Windows Shortcut Files Security Feature Bypass Vulnerability

Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

Azure DevOps Server Elevation of Privilege Vulnerability

net-tools Stack-based Buffer Overflow vulnerability

GitHub: CVE-2025-46835 Git File Overwrite Vulnerability

Redis is vulnerable to DoS via specially crafted LUA scripts

Redis: Authenticated users can execute LUA scripts as a different user

Lua library commands may lead to integer overflow and potential RCE

Unexpected command execution in untrusted VCS repositories in cmd/go

Sensitive headers not cleared on cross-origin redirect in net/http

Erlang/OTP SSH Has Strict KEX Violations

Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

OPA server Data API HTTP path injection of Rego

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.

GitHub: CVE-2025-46334 Git Malicious Shell Vulnerability

Go Snowflake Driver has race condition when checking access to Easy Logging configuration file

PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.

In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.