NVIDIA nvJPEG2000 Coding Style Component index out-of-bounds write vulnerability NVIDIA nvJPEG2000库版本0.8.0中存在内存损坏漏洞，处理JPEG2000文件时可能导致越界写入和远程代码执行。该漏洞由Talos发现并已修复。... 2025-2-10 23:59:45 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com 300131 libnvjpeg2k csiz ubyte nvjpeg2k

NVIDIA nvJPEG2000 Ndecomp heap-based buffer overflow vulnerability NVIDIA nvJPEG2000 0.8.0 存在基于堆的缓冲区溢出漏洞。攻击者可通过特制 JPEG2000 文件触发该漏洞，导致相邻堆内存被覆盖，进而引发内存破坏和任意代码执行。该漏洞已修复。... 2025-2-10 23:59:45 | 阅读: 1 | 收藏 | 0day Fans - talosintelligence.com 148121 libnvjpeg2k csiz ndecomp ccoc

ClearML Vault API disabled vaults retrieval vulnerability ClearML Enterprise Server 3.22.5-1533 存在信息泄露漏洞，攻击者可通过恶意 HTTP 请求访问被禁用的 Vault，导致敏感凭证泄露。修复建议是修改 API 以排除禁用的全局 Vault 项。... 2025-2-5 23:59:32 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com clearml vaults somedomain 1533 lies

ClearML dataset upload XSS vulnerability ClearML Enterprise Server 3.22.5-1533版本存在跨站脚本（XSS）漏洞，允许攻击者通过上传恶意HTML文件在用户浏览器中执行任意脚本。建议修复措施包括设置Content-Disposition头为attachment、实施严格CSP策略以及可选的HTML内容净化。... 2025-2-5 23:59:32 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com clearml security attacker 1533 malicious

Observium add_alert_check cross-site scripting (XSS) vulnerability SUMMARYA cross-site scripting (xss) vulnerability exists in the add_alert_check page of Observium... 2025-1-14 23:59:26 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com observium stringify attacker network php

Observium vlan html code injection vulnerability SUMMARYA html code injection vulnerability exists in the vlan management part of Observium CE 24.4... 2025-1-14 23:59:26 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com vlan observium attacker network 10px

Observium mapname cross-site scripting (XSS) vulnerability SUMMARYA cross-site scripting (xss) vulnerability exists in the weather map editor functionality o... 2025-1-14 23:59:26 | 阅读: 1 | 收藏 | 0day Fans - talosintelligence.com observium mapname 3a0 php attacker

OFFIS DCMTK nowindow improper array index validation vulnerability SUMMARYAn improper array index validation vulnerability exists in the nowindow functionality of OF... 2025-1-13 00:0:13 | 阅读: 2 | 收藏 | 0day Fans - talosintelligence.com dcmtk dcmimgle manu redzone ofstatic

OFFIS DCMTK determineMinMax improper array index validation vulnerability SUMMARYAn improper array index validation vulnerability exists in the determineMinMax functionalit... 2025-1-13 00:0:13 | 阅读: 1 | 收藏 | 0day Fans - talosintelligence.com dcmtk manu libsrc dcmimgle