CVE-2010-20114 – VariCAD EN Stack-Based Buffer Overflow

August 21, 2025

CVE ID : CVE-2010-20114

Published : Aug. 21, 2025, 9:15 p.m. | 4 hours, 4 minutes ago

Description : VariCAD EN up to and including version 2010-2.05 is vulnerable to a stack-based buffer overflow when parsing .dwb drawing files. The application fails to properly validate the length of input data embedded in the file, allowing a crafted .dwb file to overwrite critical memory structures. This flaw can be exploited locally by convincing a user to open a malicious file, resulting in arbitrary code execution.

Severity: 8.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43747 – Liferay DXP SSRF

Next Article CVE-2010-20120 – Maple Maplet Remote Code Execution

Highlights

CVE-2025-3225 – LLama Index XML Entity Expansion Denial of Service

July 7, 2025

CVE ID : CVE-2025-3225

Published : July 7, 2025, 10:15 a.m. | 2 hours, 54 minutes ago

Description : An XML Entity Expansion vulnerability, also known as a ‘billion laughs’ attack, exists in the sitemap parser of the run-llama/llama_index repository, specifically affecting version v0.12.21. This vulnerability allows an attacker to supply a malicious Sitemap XML, leading to a Denial of Service (DoS) by exhausting system memory and potentially causing a system crash. The issue is resolved in version v0.12.29.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2010-20114 – VariCAD EN Stack-Based Buffer Overflow

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

CVE-2025-40620 – TCMAN’s GIM SQL Injection Vulnerability

The massive Civilization 6 Platinum bundle is FREE for a limited time — here’s how to get it

Samsung MagicINFO 9 Server RCE flaw now exploited in attacks

LWiAI Podcast #201 – GPT 4.5, Sonnet 3.7, Grok 3, Phi 4

CVE-2025-3225 – LLama Index XML Entity Expansion Denial of Service

3 secrets of PowerToys on Windows 11 that you’ll wish you already knew

Qilin Solidifies Claim as Top Ransomware Group

CVE-2024-35281 – FortiClientMac and FortiVoiceUCDesktop Code Injection Vulnerability

CVE-2010-20114 – VariCAD EN Stack-Based Buffer Overflow

Related Posts