CVE-2026-5477

creationtimestamp| type| source ---|---|--- 2026-04-10 06:07:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj4nssm7jw2d 2026-04-10 07:17:18+00:00| seen| Telegram/XhYu4mFc-5em62dyPX2z20yH7qSW9mAMzHMEdwTQTYW2M...

CVE-2026-5477

An integer overflow existed in the wolfCrypt CMAC implementation, that could be exploited to forge CMAC tags. The function wcCmacUpdate used the guard if cmac-totalSz != 0 to skip XOR-chaining on the first block where digest is all-zeros and the XOR is a no-op. However, totalSz is word32 and wrap...

Linux Distros Unpatched Vulnerability : CVE-2026-5477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow existed in the wolfCrypt CMAC implementation, that could be exploited to forge CMAC tags. The function wcCmacUpdate used the guard if...

ANT-2026-ZZY4987K · wolfSSL · integer-overflow

integer-overflow high CVE-2026-5477 Severity Claude high · Security research firm high · Maintainer - Discovered by Claude Mythos Preview SECURITY RESEARCH FIRM ANALYSIS Triage and disclosure were performed by Calif. Verdict: true positive Severity: high TIMELINE Dates from discovery through publ...

MiracleLinux 4 : bind-9.8.2-0.37.1.0.1.rc1.AXS4 (AXSA:2015-459:01)

"The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-459:01 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL 80900 C...

MiracleLinux 4 : bind-9.8.2-0.37.2.0.1.rc1.AXS4 (AXSA:2015-226:04)

"The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-226:04 advisory. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names ...

CVE-2019-5477

creationtimestamp| type| source ---|---|--- 2025-10-13 09:10:05+00:00| seen| https://bsky.app/profile/parlaconguido.bsky.social/post/3m32ul2dz2e26...

EUVD-2013-5477

Malware in sbrugna...

CVE-2024-5477

creationtimestamp| type| source ---|---|--- 2025-08-13 17:56:32+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115022744242170508...

CVE-2025-5477

Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sony XAV-AX8500 devices. An attacker must first obtain the ability to pair a malicious Bluetooth devi...

CVE-2025-5477 Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow Remote Code Execution Vulnerability

Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sony XAV-AX8500 devices. An attacker must first obtain the ability to pair a malicious Bluetooth devi...

CVE-2025-5477

Sony XAV-AX8500 Bluetooth L2CAP Protocol Heap-based Buffer Overflow is disclosed as CVE-2025-5477. The flaw is in the Bluetooth L2CAP data length validation, leading to heap-based buffer overflow in the elysian-bt-service process. Attack requires proximity to pair a malicious Bluetooth device, en...

CVE-2025-5477

creationtimestamp| type| source ---|---|--- 2025-06-11 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-354/ 2025-06-21 00:45:10+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19089 2025-06-21 01:06:42+00:00| seen| Telegram/q14G5iMdD1KloDs67Eh6qp4P7SNmxxJpkJgZchwtZmEFQ...

Linux Distros Unpatched Vulnerability : CVE-2015-5477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit...

BIND TKEY Query Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BIND TKEY Query Denial of Service', 'Description' = %q This module sends a malformed TKEY query, which exploits an error in handling TKEY queries...

Fedora: Security Advisory for chromium (FEDORA-2023-8c9fd2a001)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 38 : chromium (2023-8c9fd2a001)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-8c9fd2a001 advisory. Update to 118.0.5993.70. Include following security fixes: - CVE-2023-5218: Use after free in Site Isolation. - CVE-2023-5487: Inappropriate...

Mageia: Security Advisory (MGASA-2023-0289)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2023-0289 Updated chromium-browser-stable packages fix bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 118.0.5993.70 release, fixing 20 bugs and vulnerabilities. Some of the security fixes are: Critical CVE-2023-5218: Use after free in Site Isolation. Reported by @18 on 2023-09-27 Medium CVE-2023-5487: Inappropriate implementation in...

Updated chromium-browser-stable packages fix bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 118.0.5993.70 release, fixing 20 bugs and vulnerabilities. Some of the security fixes are: Critical CVE-2023-5218: Use after free in Site Isolation. Reported by @18 on 2023-09-27 Medium CVE-2023-5487: Inappropriate implementation in...