Lucene search
K

61 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.9 views

SUSE SLES15 Security Update : libarchive (SUSE-SU-2026:2599-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2599-1 advisory. This update for libarchive fixes the following issues - CVE-2025-60753: bsdtar hangs and OOMs with zero-length pattern matches...

9.8CVSS7.4AI score0.01073EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.7 views

SUSE SLED15 / SLES15 Security Update : libarchive (SUSE-SU-2026:2490-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2490-1 advisory. This update for libarchive fixes the following issues - CVE-2025-60753: bsdtar hangs and OOMs with zero-length...

9.8CVSS6.5AI score0.01073EPSS
Exploits1References16
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/27 12:0 a.m.13 views

Security update for libarchive (important)

openSUSE security update: security update for libarchive ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20797-1 Rating: important References: bsc1259635 bsc1259928 bsc1259931 bsc1261186 Cross-References: CVE-2026-4111 CVE-2026-4424 CVE-2026-4426...

8.7CVSS7.2AI score0.01073EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.11 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : libarchive vulnerabilities (USN-8292-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8292-1 advisory. It was discovered that libarchive incorrectly handled certain RAR archive...

9.8CVSS7.6AI score0.01073EPSS
Exploits0References4
Wolfi
Wolfi
added 2026/05/13 7:48 a.m.20 views

CVE-2026-4426 vulnerabilities

Vulnerabilities for packages: libarchive...

6.5CVSS5.8AI score0.00305EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/13 7:17 a.m.24 views

CVE-2026-4426 vulnerabilities

Vulnerabilities for packages: libarchive...

6.5CVSS5.8AI score0.00305EPSS
Exploits0
Circl
Circl
added 2026/03/19 5:48 p.m.20 views

CVE-2026-4426

creationtimestamp| type| source ---|---|--- 2026-03-19 17:48:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgkqupyvg2e...

6.5CVSS5.7AI score0.00305EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/19 1:53 p.m.6 views

CVE-2026-4426

A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper validation of a field pzlog2bs read from ISO9660 Rock Ridge extensions. A remote attacker can exploit this by supplying a specially crafted ISO file. This can lead to...

6.5CVSS5.8AI score0.00305EPSS
Exploits0References5
OSV
OSV
added 2026/02/01 1:37 a.m.2 views

MINI-4426-RX7G-9994

Bulletin has no description...

8.6CVSS7.2AI score0.00532EPSS
Exploits0
EUVD
EUVD
added 2026/01/23 6:45 a.m.5 views

EUVD-2026-4426

The The BuddyPress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 14.3.3. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possible for...

7.3CVSS6AI score0.00444EPSS
Exploits0References4
OSV
OSV
added 2026/01/23 12:0 a.m.4 views

DLA-4426-2 osslsigncode - regression update

Bulletin has no description...

5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.11 views

MiracleLinux 7 : kernel-3.10.0-1062.7.1.el7 (AXSA:2019-4426:07)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4426:07 advisory. Kernel: KVM: OOB memory access via mmio ring buffer CVE-2019-14821 kernel: local attacker can trigger multiple use-after-free conditions results in...

8.8CVSS7.4AI score0.00763EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/12/31 12:0 a.m.3 views

Debian: Security Advisory (DLA-4426-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.003EPSS
Exploits0References2
OSV
OSV
added 2025/12/30 12:0 a.m.2 views

DLA-4426-1 osslsigncode - security update

Bulletin has no description...

7.8CVSS6.9AI score0.003EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/08/01 1:16 a.m.5 views

CVE-2025-4426

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

6CVSS7.2AI score0.00175EPSS
Exploits0References1
Circl
Circl
added 2025/07/30 1:45 a.m.5 views

CVE-2025-4426

creationtimestamp| type| source ---|---|--- 2025-07-30 01:45:15+00:00| seen| Telegram/eOpByfw4z6jTCmqEvu6wx75HxRJgQCfdh52gZEeFNw6OhI...

6CVSS5.1AI score0.00175EPSS
Exploits0
NVD
NVD
added 2025/07/30 1:15 a.m.5 views

CVE-2025-4426

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

6CVSS0.00175EPSS
Exploits0References2
CVE
CVE
added 2025/07/30 12:46 a.m.17 views

CVE-2025-4426

CVE-2025-4426 appears to be Lenovo-specific, involving a vulnerability in custom firmware where the SMM module’s SMRAM memory contents can be leaked, causing information disclosure. Public records in connected documents point to InsydeH2O-related SMRAM leakage in the SMM, with Lenovo as the vendo...

6CVSS6.6AI score0.00175EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/30 8:30 a.m.31 views

CVE-2024-4426 Comparison Slider <= 1.0.5 - Cross-Site Request Forgery

The Comparison Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.5. This is due to missing or incorrect nonce validation on several functions hooked to AJAX actions. This makes it possible for unauthenticated attackers to change slid...

4.3CVSS4.7AI score0.00179EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/30 12:0 a.m.13 views

WordPress Comparison Slider Plugin <= 1.0.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software Comparison Slider Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4426 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f4b5d98aca44 Credits Benedictus Jovan...

4.3CVSS6.6AI score0.00179EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder