logesh-GIT001

2 exploits Active since Nov 2025
CVE-2025-48593 NOMISEC HIGH WRITEUP
Android - Remote Code Execution via Use-After-Free in bta_hf_client_cb_init
In bta_hf_client_cb_init of bta_hf_client_main.cc, there is a possible remote code execution due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
7 stars
CVSS 8.0
CVE-2025-55182 NOMISEC CRITICAL WRITEUP
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
2 stars
CVSS 10.0