Lucene search
K

2609 matches found

NVD
NVD
added yesterday3 views

CVE-2026-24238

NVIDIA TensorRT for contains a vulnerability where an attacker might cause an improper validation of array index. A successful exploit of this vulnerability might lead to code execution...

7.8CVSS
Exploits0References3
CVE
CVE
added yesterday8 views

CVE-2026-24238

NVIDIA TensorRT for contains a vulnerability where an attacker might cause an improper validation of array index. A successful exploit of this vulnerability might lead to code execution...

7.8CVSS6.1AI score
Exploits0References3
Cvelist
Cvelist
added yesterday32 views

CVE-2026-24238

NVIDIA TensorRT for contains a vulnerability where an attacker might cause an improper validation of array index. A successful exploit of this vulnerability might lead to code execution...

7.8CVSS
Exploits0References3
EUVD
EUVD
added yesterday5 views

EUVD-2026-43562

Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ollama. Authentication is not required to exploit this vulnerability. The specific flaw exists...

7.5CVSS7AI score0.00391EPSS
Exploits0References2
Nvidia
Nvidia
added yesterday5 views

Security Bulletin: NVIDIA TensorRT - July 2026

NVIDIA has released a software update for NVIDIA® TensorRT. To protect your system, clone or update this software to TensorRT v11.0.0 and Polygraphy 0.50.0 from the NVIDIA/TensorRT GitHub repo, TensorRT product page, the network repository, or Python package index TensorRT, Polygraphy. Go to NVID...

7.8CVSS6.5AI score
Exploits0Affected Software1
Cvelist
Cvelist
added 2 days ago31 views

CVE-2026-15685 Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability

Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ollama. Authentication is not required to exploit this vulnerability. The specific flaw exists...

7.5CVSS0.00391EPSS
Exploits0References1
CVE
CVE
added 2 days ago8 views

CVE-2026-15685

CVE-2026-15685 affects Ollama, with the vulnerability located in the downloadBlob function where user-supplied data is not properly validated, allowing an out-of-bounds memory access and resulting in a denial-of-service condition. The issue, linked to ZDI-CAN-27277, can be triggered remotely with...

7.5CVSS7AI score0.00391EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/07/01 7:16 a.m.12 views

CVE-2026-14193

DVP80ES300T with Improper Validation of Array Index Vulnerability...

7.5CVSS0.00263EPSS
Exploits0References1
CVE
CVE
added 2026/07/01 5:30 a.m.21 views

CVE-2026-14193

The vulnerability CVE-2026-14193 affects the DVP80ES300T device and is described as an Improper Validation of Array Index vulnerability. In the provided data, the CVSS v3.1 base score is 7.5 ( HIGH ), with Network attack vector, no privileges required, no user interaction, and availability impact...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/01 5:30 a.m.43 views

CVE-2026-14193 DVP80ES300T - Improper Validation of Array Index Vulnerability

DVP80ES300T with Improper Validation of Array Index Vulnerability...

7.5CVSS0.00263EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: In the net: rose module, the function rosekillbydevice collects sockets into a local array, and then iterates over those arrays to disconnect sockets bound to devices that are being shut down. The loop mistakenly indexes arraycnt...

7.8CVSS6.4AI score0.0012EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51708

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter module where the hbh mt6 check function fails to reject optsnr values supplied from userspace that exceed the capacity of the struct ip6t opts structure...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References11
CVE
CVE
added 2026/06/23 5:55 p.m.22 views

CVE-2026-45692

CVE-2026-45692 (Caddy) describes a remote admin authorization bypass where the /config traversal layer and the authorization layer disagree on the target object. Specifically, from 2.4.0 through 2.11.3, an authorized path such as /config/apps/http/servers/srv/routes/0 could be used to access or m...

5.4CVSS5.8AI score0.00144EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/06/23 5:55 p.m.3 views

CVE-2026-45692 Caddy: Remote Admin Authorization Bypass in `/config` API via Array Index Normalization

Caddy is an extensible server platform that uses TLS by default. From 2.4.0 until 2.11.3, the authorization layer and the /config traversal layer do not agree on what object the path refers to. In this case, a path authorized for one config object is accepted, but then resolves to a different...

5.4CVSS6AI score0.00144EPSS
Exploits1References3
OSV
OSV
added 2026/06/23 1:27 p.m.3 views

SUSE-SU-2026:2584-1 Security update for exiv2

This update for exiv2 fixes the following issues - CVE-2021-34334: DoS due to integer overflow in loop counter bsc1189338. - CVE-2026-25884: out-of-bounds read in CrwMap: decode0x0805 bsc1259083. - CVE-2026-27596: integer overflow in LoaderNative: getData leads to out-of-bounds read bsc1259084. -...

8.1CVSS6.6AI score0.01104EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/06/23 12:0 a.m.6 views

Carrier Corporation i-VU Improper Validation of Array Index (CVE-2025-0657)

CWE-129 Improper Validation of Array Index vulnerability exists in Automated Logic WebCTRL and Carrier i-Vu Building Automation System products. Software uses an array index that has not been properly validated to ensure it falls within valid array bounds. This can result in out-of-bounds access,...

8.8CVSS5.7AI score0.00291EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/23 12:0 a.m.9 views

Automated Logic WebCTRL Improper Validation of Array Index (CVE-2025-0657)

CWE-129 Improper Validation of Array Index vulnerability exists in Automated Logic WebCTRL and Carrier i-Vu Building Automation System products. Software uses an array index that has not been properly validated to ensure it falls within valid array bounds. This can result in out-of-bounds access,...

8.8CVSS5.7AI score0.00291EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/10 5:38 p.m.8 views

keycloak: Keycloak: Denial of Service via malformed Authorization header

A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authorization: Bearer' header to any client registration endpoint. This can lead to an...

5.3CVSS5.5AI score0.00417EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/01 10:5 p.m.38 views

CVE-2026-25276 Improper Validation of Array Index in Secure Processor

Memory corruption while using Strongbox due to missing bounds check...

8.8CVSS0.00075EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/01 10:5 p.m.12 views

CVE-2026-25276 Improper Validation of Array Index in Secure Processor

Memory corruption while using Strongbox due to missing bounds check...

8.8CVSS5.8AI score0.00075EPSS
Exploits0References1
Rows per page
Query Builder