CVE CyberSecurity Database News (Page 228)

Feb 18, 2025 Exploit

CVE-2025-27113 - How This libxml2 NULL Pointer Dereference Can Crash Your Apps

If you’re working with XML on Linux—or even just using popular software that does—you’ll want to know about a new vulnerability:

Feb 18, 2025 Exploit SOAP PHP

CVE-2025-24928 - Stack Buffer Overflow in libxml2’s xmlSnprintfElements Explained (Pre-2.12.10 & 2.13.6) with Exploit Details

A high-severity vulnerability was discovered in the popular XML parsing library libxml2. Tracked as CVE-2025-24928, this flaw could let attackers run code on your system

Feb 18, 2025

CVE-2025-25475 - Exploiting NULL Pointer Dereference in DCMTK’s /libsrc/dcrleccd.cc Leads to DoS

--- Introduction In the world of medical imaging, DICOM files and DCMTK are household names. DCMTK is a widely used open-source toolkit for working with

Feb 18, 2025 Exploit

CVE-2025-25472 - Buffer Overflow in DCMTK v3.6.9+ DEV Leads to DoS – Exploit & Analysis

On February 2025, a new vulnerability—CVE-2025-25472—was identified in the popular DICOM medical image toolkit, DCMTK. This issue affects the DCMTK git master branch

Feb 18, 2025

CVE-2025-25471 - How a NULL Pointer Dereference in FFmpeg's MOV Demuxer Could Crash Your App

In early 2025, a new vulnerability surfaced in the popular FFmpeg project: CVE-2025-25471. This post breaks down what happened, why it matters, and demonstrates with