CVE-2025-31177 – Gnuplot Heap Buffer Overflow Vulnerability

May 7, 2025

CVE ID : CVE-2025-31177

Published : May 7, 2025, 9:16 p.m. | 2 hours, 20 minutes ago

Description : gnuplot is affected by a heap buffer overflow at function utf8_copy_one.

Severity: 6.2 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4043 – Apache Device Unprivileged File Write

Next Article CVE-2025-3925 – BrightSign Players Privilege Escalation Vulnerability

Highlights

CVE-2024-58135 – Mojolicious Weak HMAC Session Secret Vulnerability

May 3, 2025

CVE ID : CVE-2024-58135

Published : May 3, 2025, 11:15 a.m. | 52 minutes ago

Description : Mojolicious versions from 7.28 through 9.39 for Perl may generate weak HMAC session secrets.

When creating a default app with the “mojo generate app” tool, a weak secret is written to the application’s configuration file using the insecure rand() function, and used for authenticating and protecting the integrity of the application’s sessions. This may allow an attacker to brute force the application’s session keys.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

RIP, Perfect Dark — Xbox leadership canceled my most-anticipated game, and the developers deserved better

I keep seeing people at events taking notes on E-Ink tablets — so I tried one to see what all the fuss is about

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Distribution Release: Rhino Linux 2025.3

Token System using PHP and MySQL

Token System using PHP and MySQL

Create React UI component with uncontrollable

Flaget – new small 5kB CLI argument parser

RIP, Perfect Dark — Xbox leadership canceled my most-anticipated game, and the developers deserved better

RIP, Perfect Dark — Xbox leadership canceled my most-anticipated game, and the developers deserved better

I keep seeing people at events taking notes on E-Ink tablets — so I tried one to see what all the fuss is about

Le notizie minori del mondo GNU/Linux e dintorni della settimana nr 27/2025

CVE-2025-31177 – Gnuplot Heap Buffer Overflow Vulnerability

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

Perficient Included in Forrester’s AI Technical Services Landscape, Q2 2025

Distribution Release: NethServer 8.4

CVE-2025-4412 – Viscosity macOS Launch Agent Dynamic Library Loading Vulnerability

Rilasciato Trinity Desktop Environment R14.1.4: Novità e approfondimenti sulla nuova versione

CVE-2024-58135 – Mojolicious Weak HMAC Session Secret Vulnerability

Mysterious Disappearance of Cybersecurity Expert Xiaofeng Wang and Wife Triggers FBI Raids

CVE-2025-46236 – Link Software LLC HTML Forms Stored Cross-site Scripting (XSS)

CVE-2025-5440 – Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 NTP Os Command Injection Vulnerability

CVE-2025-31177 – Gnuplot Heap Buffer Overflow Vulnerability

Related Posts