CVE-2026-42766 Possible NULL Dereference in Password-Based CMS Decryption

Issue summary: A specially crafted password-encrypted CMS message can trigger a NULL pointer dereference during CMS decryption. Impact summary: This NULL pointer dereference leads to an application crash and a Denial of Service. The CMS PasswordRecipientInfo.keyDerivationAlgorithm field is define...

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

CVE-2021-42766

The Proof-of-Stake PoS Ethereum consensus protocol through 2021-10-19 allows an adversary to cause a denial of service long-range consensus chain reorganizations, even when this adversary has little stake and cannot influence network message propagation. This can cause a protocol stall, or an...

CVE-2024-42766

creationtimestamp| type| source ---|---|--- 2024-08-23 17:58:05+00:00| seen| https://t.me/cvedetector/3995...

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

CVE-2024-42766

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via /deleteTicket.php...

CVE-2023-42766

creationtimestamp| type| source ---|---|--- 2024-01-19 21:27:24+00:00| seen| https://t.me/ctinow/170415 2024-02-15 20:56:58+00:00| seen| https://t.me/ctinow/185863...

CVE-2023-42766

CVE-2023-42766 affects Intel NUC 8 Compute Element BIOS firmware. The issue stems from improper input validation in the BIOS, potentially allowing a privileged user to escalate privileges via local access. Documented impact is local escalation with high severity (CVSS v3.1 base 7.5–7.8 depending ...

Intel® NUC Advisory

Summary: Potential security vulnerabilities in some Intel® NUC BIOS firmware may allow escalation of privilege, information disclosure or denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-42429 Description:...

CVE-2022-42766

The CVE-2022-42766 entry concerns the wlan driver where a missing permission check could allow local information disclosure. Connected sources consistently describe this as a local-privilege issue affecting the wlan driver, with impact on confidentiality (high) and limited attack complexity (low)...

CVE-2021-42766

creationtimestamp| type| source ---|---|--- 2021-10-21 00:35:44+00:00| seen| https://t.me/cibsecurity/30926...

CVE-2021-42766

Technical details (affected products, root cause, specific versions, fixes) are not publicly provided in the supplied documents. Monitor for updates.