A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. The exploit has been published and may be used. This patch is called ed141286a37f6e5ddafb5069347ff5d587e7a4e0. It is best practice to apply a patch to resolve this issue.

CVE Database V5

Detailed information about CVE-2025-9165: Memory Leak in LibTIFF affecting null LibTIFF. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-9165: Memory Leak in LibTIFF - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-9165: Memory Leak in LibTIFF

Incorrect Access Control in the AJAX endpoint functionality in jonkastonka Cookies and Content Security Policy plugin through version 2.29 allows remote attackers to cause a denial of service (database server resource exhaustion) via unlimited database write operations to the wp_ajax_nopriv_cacsp_insert_consent_data endpoint.

CVE-2025-51529 is a medium-severity vulnerability affecting the 'jonkastonka Cookies and Content Security Policy' WordPress plugin up to version 2.29. The vulnerability arises from incorrect access control in the AJAX endpoint functionality, specifically the wp_ajax_nopriv_cacsp_insert_consent_data endpoint. This endpoint is accessible without authentication (as indicated by 'nopriv'), allowing remote attackers to invoke it without any privileges. The flaw permits attackers to perform unlimited database write operations, leading to resource exhaustion on the database server. This results in a denial of service (DoS) condition, where the backend database becomes overwhelmed and unable to process legitimate requests. The vulnerability is classified under CWE-284 (Improper Access Control), highlighting that the plugin fails to restrict access properly to sensitive operations. The CVSS v3.1 base score is 5.3, reflecting a medium impact primarily on confidentiality with no direct impact on integrity or availability according to the vector, although the described DoS effect impacts availability indirectly. No known exploits are currently reported in the wild, and no patches have been linked yet. The vulnerability does not require user interaction or privileges, making it easier to exploit remotely over the network.

Detailed information about CVE-2025-51529: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-51529: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-51529: n/a

A CORS misconfiguration in Nginx Proxy Manager v2.12.3 allows unauthorized domains to access sensitive data, particularly JWT tokens, due to improper validation of the Origin header. This misconfiguration enables attackers to intercept tokens using a simple browser script and exfiltrate them to a remote attacker-controlled server, potentially leading to unauthorized actions within the application.

CVE-2025-50579 is a security vulnerability identified in Nginx Proxy Manager version 2.12.3, involving a Cross-Origin Resource Sharing (CORS) misconfiguration. The core issue stems from improper validation of the Origin header in HTTP requests, which allows unauthorized domains to bypass intended access controls. Specifically, this misconfiguration enables attackers to craft malicious browser scripts that can intercept sensitive data such as JSON Web Tokens (JWTs) issued by the application. JWTs are commonly used for authentication and authorization, and their compromise can lead to unauthorized access and actions within the affected application environment. The vulnerability does not require any user interaction or authentication, making it easier to exploit remotely over the network. The CVSS v3.1 base score is 5.3, indicating a medium severity level, primarily due to the impact on confidentiality (leakage of tokens) without direct impact on integrity or availability. No known exploits are currently reported in the wild, and no patches have been linked yet. The vulnerability is classified under CWE-1259, which relates to improper CORS policy implementation. This flaw can be exploited by attackers hosting malicious web pages that, when visited by authenticated users of the vulnerable Nginx Proxy Manager, can silently extract JWT tokens and send them to attacker-controlled servers, potentially leading to session hijacking or unauthorized operations within the proxy manager interface or associated backend services.

Detailed information about CVE-2025-50579: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-50579: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-50579: n/a

nginx-defender is a high-performance, enterprise-grade Web Application Firewall (WAF) and threat detection system engineered for modern web infrastructure. This is a configuration vulnerability affecting nginx-defender deployments. Example configuration files
config.yaml and docker-compose.yml contain default credentials (default_password: "change_me_please", GF_SECURITY_ADMIN_PASSWORD=admin123). If users deploy nginx-defender without changing these defaults, attackers with network access could gain administrative control, bypassing security protections. The issue is addressed in v1.5.0 and later.

CVE-2025-55740 is a configuration vulnerability in Anipaleja's nginx-defender, a high-performance Web Application Firewall (WAF) and threat detection system designed for modern web infrastructures. The vulnerability arises from the use of default credentials embedded in example configuration files (config.yaml and docker-compose.yml), specifically the default_password set to "change_me_please" and GF_SECURITY_ADMIN_PASSWORD set to "admin123". If these default credentials are not changed by administrators before deployment, an attacker with network access can gain unauthorized administrative control over the nginx-defender system. This administrative access allows the attacker to bypass the WAF's security protections, potentially enabling them to manipulate firewall rules, disable threat detection, or otherwise compromise the security posture of the protected web applications. The vulnerability affects all versions of nginx-defender prior to 1.5.0, with the issue resolved in version 1.5.0 and later. The CVSS v3.1 base score is 6.5, indicating a medium severity level. The vector (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N) shows that the vulnerability is remotely exploitable over the network without any privileges or user interaction, impacting confidentiality and integrity but not availability. There are no known exploits in the wild at this time. The root cause is classified under CWE-1392, which relates to the use of default credentials, a common misconfiguration leading to unauthorized access.

Detailed information about CVE-2025-55740: CWE-1392: Use of Default Credentials in Anipaleja nginx-defender affecting Anipaleja nginx-defender. Get real-time up

CVE-2025-55740: CWE-1392: Use of Default Credentials in Anipaleja nginx-defender - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-55740: CWE-1392: Use of Default Credentials in Anipaleja nginx-defender

A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet of the file src/tcpedit/edit_packet.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. This patch is called 73008f261f1cdf7a1087dc8759115242696d35da. Applying a patch is advised to resolve this issue.

Detailed information about CVE-2025-9157: Use After Free in appneta tcpreplay affecting appneta tcpreplay. Get real-time updates, technical details, and mitigat

CVE-2025-9157: Use After Free in appneta tcpreplay

CVE-2025-9157: Use After Free in appneta tcpreplay

Description

Technical Details

Related Threats

CVE-2025-9165: Memory Leak in LibTIFF

CVE-2025-51529: n/a

CVE-2025-50579: n/a

CVE-2025-55740: CWE-1392: Use of Default Credentials in Anipaleja nginx-defender

CVE-2025-51543: n/a

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility