Lucene search
K

161620 matches found

OSV
OSV
added 2026/05/04 10:15 a.m.28 views

ALPINE-CVE-2026-33846

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 10:15 a.m.16 views

CVE-2026-33846

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS0.01263EPSS
Exploits0References16
Securelist
Securelist
added 2026/05/04 10:0 a.m.9 views

“Legitimate” phishing: how attackers weaponize Amazon SES to bypass email security

Introduction The primary goal for attackers in a phishing campaign is to bypass email security and trick the potential victim into revealing their data. To achieve this, scammers employ a wide range of tactics, from redirect links to QR codes. Additionally, they heavily rely on legitimate sources...

5.8AI score
Exploits0
Veracode
Veracode
added 2026/05/04 8:36 a.m.10 views

Authentication Bypass

Spring gRPC is vulnerable to Authentication Bypass. The vulnerability is due to improper clearing of the authenticated security context on gRPC worker threads, where a previously authenticated identity may persist after an access denial and be reused by a subsequent request, potentially leading t...

8.8CVSS5.8AI score0.00171EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2026/05/04 8:34 a.m.4 views

CLSA-2026-1777883671 nginx: Fix of 2 CVEs

CVE-2026-27651: fix null pointer dereference in ngxmailauthhttpmodule when authentication retry is enabled with CRAM-MD5 or APOP - CVE-2026-32647: fix buffer over-read/write in ngxhttpmp4module when processing crafted mp4 files with empty stco/co64 atoms...

8.7CVSS6.1AI score0.00921EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/04 7:16 a.m.10 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 7:16 a.m.24 views

CVE-2026-43860

mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...

3.7CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 7:16 a.m.43 views

CVE-2026-43859

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 7:16 a.m.12 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS0.00162EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/04 7:4 a.m.123 views

Exploit for CVE-2026-6379

CVE-2026-6379 — WP Photo Album Plus :8080/?pageid=" --mode pr...

6AI score0.00328EPSS
Exploits1
OSV
OSV
added 2026/05/04 6:31 a.m.5 views

CLSA-2026-1776163133 tomcat: Fix of 3 CVEs

CVE-2024-52316: fix unchecked error condition in Jakarta Authentication JASPIC ServerAuthContext - CVE-2025-46701: fix case sensitivity bypass in CGI servlet pathInfo - CVE-2025-55754: add escaping to logging output for ANSI sequences...

9.8CVSS6AI score0.09917EPSS
Exploits2References1
EUVD
EUVD
added 2026/05/04 6:0 a.m.9 views

EUVD-2026-26900

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
CVE
CVE
added 2026/05/04 6:0 a.m.16 views

CVE-2026-43862

CVE-2026-43862 concerns mutt prior to 2.3.2, where the imap_auth_gss security level is mishandled. Affected software: mutt (before 2.3.2). Root cause: mishandling of the imap_auth_gss security level. Impact (per CVSS): low overall impact (Confidentiality: None, Integrity: Low, Availability: None)...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 6:0 a.m.4 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/04 6:0 a.m.6 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 6:0 a.m.31 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS0.00162EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/04 6:0 a.m.4 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS5.8AI score0.00162EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/04 5:45 a.m.3 views

CVE-2026-43860

mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
CVE
CVE
added 2026/05/04 5:45 a.m.29 views

CVE-2026-43860

CVE-2026-43860 affects mutt prior to 2.3.2, where the hash_passwd is sometimes truncated by one byte during IMAP auth_cram MD5 digest. The root cause stated is a truncation issue in handling hash_passwd for IMAP CRAM-MD5 authentication. Publicly available documents do not specify the exact techni...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 5:41 a.m.29 views

CVE-2026-43859

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS0.00162EPSS
Exploits0References1
Rows per page
Query Builder