CVE CyberSecurity Database News (Page 26)

Apr 23, 2025 Exploit

CVE-2025-32818 - Null Pointer Dereference in SonicOS SSLVPN Virtual Office – Remote Crash & DoS Explained

In early 2025, a significant security vulnerability was found in SonicWall SonicOS, affecting its SSLVPN Virtual Office interface. Identified as CVE-2025-32818, this flaw lets any

Apr 23, 2025 Exploit

CVE-2025-21605 - Redis Output Buffer DoS - Unlimited Memory Exhaustion Vulnerability Explained

Redis is a super popular, open-source, in-memory database that’s incredibly fast and widely used as a caching layer and message broker. But speed sometimes

Apr 23, 2025 Exploit

CVE-2025-46393 - Severe Packet Size Mishandling in ImageMagick’s Multispectral MIFF Image Processing (Pre-7.1.1-44)

CVE-2025-46393 is a critical security vulnerability affecting ImageMagick (versions before 7.1.1-44), an open-source image processing toolkit popular with web apps and image editing

Apr 23, 2025

CVE-2025-43965 - How ImageMagick MIFF Depth Mishandling Became a Real Threat (with Example Exploit)

On June 2025, a new vulnerability—CVE-2025-43965—was identified in ImageMagick affecting how MIFF images are processed, specifically with image depth mishandling after the SetQuantumFormat

Apr 23, 2025 Exploit

CVE-2025-0618 - Persistent Denial of Service in FireEye EDR Agent via Malicious Tamper Protection Event

--- Introduction In early 2025, security researchers discovered a critical vulnerability in the FireEye Endpoint Detection and Response (EDR) agent, tracked as CVE-2025-0618. This issue