Lucene search
K

215 matches found

Vulnrichment
Vulnrichment
added 2026/06/01 9:14 p.m.8 views

CVE-2026-0040

In multiple functions of ubsanthrowingruntime.cpp, there is a possible way to cause a crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

6AI score0.00253EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/01 9:14 p.m.33 views

CVE-2026-0040

In multiple functions of ubsanthrowingruntime.cpp, there is a possible way to cause a crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00253EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/02/17 12:0 a.m.2 views

Mageia: Security Advisory (MGASA-2026-0040)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.5AI score0.00233EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/02 4:52 p.m.8 views

EUVD-2026-0040

In the plex.tv backend for Plex Media Server PMS through 2025-12-31, a non-server device token can retrieve other tokens intended for unrelated access via clients.plex.tv/devices.xml...

8.5CVSS6.4AI score0.00537EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:41 a.m.6 views

CVE-2023-0040

Versions of Async HTTP Client prior to 1.13.2 are vulnerable to a form of targeted request manipulation called CRLF injection. This vulnerability was the result of insufficient validation of HTTP header field values before sending them to the network. Users are vulnerable if they pass untrusted...

7.5CVSS7.1AI score0.00549EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2006-0040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service CPU and memory consumption via a text e-mail with a large number of URL...

5CVSS5.9AI score0.01946EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/10 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2025:0040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.6CVSS7.2AI score0.00309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.25 views

Photon OS 1.0: Unzip PHSA-2017-0040

An update of the unzip package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0040. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid202833;...

5.5CVSS6.8AI score0.02054EPSS
Exploits0References4
Circl
Circl
added 2024/02/16 3:22 a.m.4 views

CVE-2024-0040

creationtimestamp| type| source ---|---|--- 2024-02-16 03:22:00+00:00| seen| https://t.me/ctinow/186091...

7.5CVSS4.8AI score0.01954EPSS
Exploits0References1
NVD
NVD
added 2024/02/16 2:15 a.m.27 views

CVE-2024-0040

In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

7.5CVSS6.5AI score0.01954EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 12:8 a.m.4036 views

CVE-2024-0040

CVE-2024-0040 centers on a heap buffer overflow in the setParameter function of MtpPacket.cpp, causing a possible out-of-bounds read and remote information disclosure without privileges or user interaction. Multiple trusted sources (NVD, Red Hat, PRION, Vuln enrichment, CVE lists, and Android sec...

7.5CVSS6.6AI score0.01954EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/16 12:8 a.m.30 views

CVE-2024-0040

In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.7AI score0.01954EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2023/06/01 12:0 p.m.5 views

acct (>=0.2.0 <=0.5.0), acid-store (>=0.8.0 <=0.14.2) +278 more potentially affected by unknown CVE via users (>=0.10.0 <=0.9.1)

users CARGO version =0.10.0, =0.2.0, =0.8.0, =0.4.0, =4.1.0, =0.1.0, =1.0.0, =0.1.0, =0.9.0, =0.9.0, =0.1.0, =0.6.2, =0.9.0, =0.2.4, =0.1.0, =0.4.51 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0040...

5.5AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2023/05/16 10:15 p.m.3 views

CVE-2021-0040

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none...

5.3AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.6 views

SUSE CVE-2014-0040

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, uses an HTTP connection to download 1 packages and 2 signing keys from Yum repositories, which allows man-in-the-middle attackers to prevent updates via unspecified vectors...

4.3CVSS6.9AI score0.01466EPSS
Exploits1References3
Circl
Circl
added 2023/01/18 10:21 p.m.7 views

CVE-2023-0040

creationtimestamp| type| source ---|---|--- 2023-01-18 22:21:16+00:00| seen| https://t.me/cibsecurity/56689 2025-04-03 19:35:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10319...

7.5CVSS7.3AI score0.00549EPSS
Exploits0References2
CVE
CVE
added 2023/01/18 12:0 a.m.96 views

CVE-2023-0040

CVE-2023-0040 affects Async HTTP Client prior to 1.13.2. The root cause is insufficient validation of HTTP header field values, enabling CRLF injection that can inject new HTTP header fields or requests into the data stream. Impact described in the connected documents notes that remote servers ma...

7.5CVSS7.7AI score0.00549EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/18 12:0 a.m.4 views

CVE-2023-0040

Versions of Async HTTP Client prior to 1.13.2 are vulnerable to a form of targeted request manipulation called CRLF injection. This vulnerability was the result of insufficient validation of HTTP header field values before sending them to the network. Users are vulnerable if they pass untrusted...

7.9AI score0.00549EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.37 views

Mageia: Security Advisory (MGASA-2017-0040)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.13314EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/11 12:0 a.m.52 views

SUSE SLES15 Security Update : kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container (SUSE-SU-2022:0040-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0040-1 advisory. - CVE-2021-43565: Fixes a vulnerability in the golang.org/x/crypto/ssh package which allowed unauthenticated clients to cause a panic in SSH...

7.5CVSS6.9AI score0.00948EPSS
Exploits0References6
Rows per page
Query Builder