
CVE Watch
Every published CVE, mapped to engagement reality.
Crawled from cve.org every day. Each entry annotated with the QSearch coverage signal — how many of our agents, skills, and playbooks address the technique. Subscribe via RSS for SIEM pipe, or get the weekly digest by email.
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fil...
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).
fedoraprojectqtCWE-787Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule)
Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule).
wasm3_projectCWE-787An issue was discovered on LG mobile devices with Android OS P and Q software for mt6762/mt6765/mt6883
An issue was discovered on LG mobile devices with Android OS P and Q software for mt6762/mt6765/mt6883. Attackers can change some of the NvRAM content by leveraging the misconfiguration of a debug command. The LG ID is LVE-SMP-210005 (August 2021).
googleIn cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588)
In cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588).
cpanelIn cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587)
In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587).
cpanelCWE-494In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586)
In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586).
cpanelCWE-362The WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585)
The WHM Locale Upload feature in cPanel before 98.0.1 allows unserialization attacks (SEC-585).
cpanelCWE-502The WHM Locale Upload feature in cPanel before 98.0.1 allows XXE attacks (SEC-585)
The WHM Locale Upload feature in cPanel before 98.0.1 allows XXE attacks (SEC-585).
cpanelCWE-611An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.
foxitsoftwareCWE-89An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
foxitsoftwareAn issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.
foxitsoftwareAn issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.
foxitsoftwareCWE-427An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.
foxitsoftwareCWE-59An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.
foxitsoftwareCWE-674An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.
foxitsoftwareCWE-787An issue was discovered in Foxit PDF Editor before 11.0.1 and PDF Reader before 11.0.1 on macOS
An issue was discovered in Foxit PDF Editor before 11.0.1 and PDF Reader before 11.0.1 on macOS. It mishandles missing dictionary entries, leading to a NULL pointer dereference, aka CNVD-C-2021-95204.
foxitfoxitsoftwareCWE-476An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows stack consumption during recursive processing of embedded XML nodes.
foxitsoftwareCWE-674An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows writing to arbitrary files via submitForm.
foxitsoftwareAn issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows an out-of-bounds read via util.scand.
foxitsoftwareCWE-125An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It mishandles situations in which an array size (derived from a /Size entry) is smaller than the maximum indirect object number, and thus there is an attempted incorrect array access (leading to a NULL pointer dereference, or out-of-bounds read or write).
foxitfoxitsoftwareCWE-129
Weekly digest
Get the curated CVE digest every Monday
One email a week, sent Monday morning CET. The CVEs published or modified in the last seven days, severity-ordered, with the QSearch coverage signal. Unsubscribe with one click — included in every send.
Pipe the CVE feed into your stack.
CVE Watch publishes RSS, Atom, and JSON feeds — wire them into your SIEM, Slack, Discord, or your RSS reader of choice. Or get the curated weekly digest by email.