Marlink Cyber identifies and responsibly discloses vulnerabilities in leading enterprise and open source software to strengthen global cybersecurity. This index lists such security vulnerabilities discovered by Marlink Cyber. Each entry links to its detailed advisory markdown file.
| Advisory ID | Product | Title | CVE |
|---|---|---|---|
| MCSAID-2025-008 | proxychains-ng | Stack Buffer Overflow in proxy_from_string() leads to arbitrary code execution and/or crash | (Pending) |
| MCSAID-2025-007 | FreePBX | Reserved | (Pending) |
| MCSAID-2025-006 | FreePBX | FreePBX Endpoint Manager command injection via Network Scanning feature | CVE-2025-59051 |
| MCSAID-2025-005 | FreePBX | FreePBX core module vulnerable to reflected cross-site scripting via Asterisk HTTP Status page | CVE-2025-59429 |
| MCSAID-2025-004 | rtl_433 | Stack-based Buffer Overflow in parse_rfraw() leads to arbitrary code execution and/or crash |
(Pending) |
| MCSAID-2025-003 | scrcpy | Buffer Overflow in sc_read32be function triggered by sc_device_msg_deserialize) | (Pending) |
| MCSAID-2025-002 | radare2 | NULL Pointer Dereference in load() (bin_dyldcache.c) leads to DoS |
(Pending) |
| MCSAID-2025-001 | radare2 | NULL Pointer Dereference in info() (bin_ne.c) leads to DoS |
(Pending) |
- CVE IDs will be updated when assigned by MITRE or the respective CNA.
- Contributions of verified fixes and reproduction details are welcome.