Lucene search
K

2468 matches found

OSV
OSV
added 2026/05/04 9:31 a.m.6 views

GHSA-W88C-9VG8-CMQ8 GoBGP has Improper Restriction of Operations within the Bounds of a Memory Buffer

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.6AI score0.00631EPSS
Exploits0References7
NVD
NVD
added 2026/05/04 7:16 a.m.19 views

CVE-2026-7737

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

7.5CVSS0.00631EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/04 5:45 a.m.5 views

CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.7AI score0.00631EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/04 5:45 a.m.3 views

CVE-2026-7737

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.7AI score0.00631EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/05/04 5:45 a.m.16 views

EUVD-2026-26917

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.7AI score0.00631EPSS
Exploits0References6
CVE
CVE
added 2026/05/04 5:45 a.m.25 views

CVE-2026-7737

CVE-2026-7737 affects osrg GoBGP up to 4.3.0. The vulnerability lies in the BMP parser, specifically BMPPeerUpNotification.ParseBody and BMPStatisticsReport.ParseBody in pkg/packet/bmp/bmp.go, where input manipulation leads to an out-of-bounds read. The issue is exploitable remotely. A fix is pub...

7.5CVSS5.7AI score0.00631EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/04 5:45 a.m.41 views

CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS0.00631EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.10 views

GoBGP 缓冲区错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a buffer error vulnerability. This vulnerability stems from an out-of-bounds read in the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody...

7.5CVSS6.2AI score0.00631EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.7 views

PT-2026-36893

Name of the Vulnerable Software and Affected Versions CImg Library versions prior to commit c3aacf5 Description An issue exists in the processing of BMP files where the nb colors field from the file header is used to calculate allocation size without validation against the actual remaining file...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.9 views

CImg 安全漏洞

CImg is a small open-source C++ toolkit for image processing, developed by GREYC. CImg has a security vulnerability that stems from the lack of validation of the nbcolors field in BMP file headers. This vulnerability may lead to excessive memory allocation and cause a system to crash due to...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-7737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody o...

7.5CVSS5.9AI score0.00631EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-015456)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015456 advisory. ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an...

8.8CVSS6.7AI score0.00794EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-015449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015449 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build...

8.8CVSS7.4AI score0.00794EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.11 views

TencentOS Server 2: ImageMagick (TSSA-2026:0251)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0251 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

9.8CVSS7.8AI score0.00794EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.10 views

RHEL 7 : fontforge (RHSA-2026:8937)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:8937 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1,...

8.8CVSS8AI score0.0058EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.3 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: freerdp (UTSA-2026-010667)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010667 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdisurfacebits function processes SURFACEBITSCOMMAND messages sent by the RDP...

9.8CVSS6.2AI score0.00656EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.5 views

AlmaLinux 8 : fontforge (ALSA-2026:7677)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:7677 advisory. fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing CVE-2025-15279 fontforge: FontForge: Remote Code Execution...

8.8CVSS6.7AI score0.00581EPSS
Exploits0References6
OSV
OSV
added 2026/04/14 1:0 p.m.7 views

CLSA-2026-1776171616 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

8.8CVSS5.8AI score0.00794EPSS
Exploits1References1
OSV
OSV
added 2026/04/14 12:56 p.m.6 views

CLSA-2026-1776171379 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

8.8CVSS5.8AI score0.00794EPSS
Exploits1References1
OSV
OSV
added 2026/04/14 12:46 p.m.9 views

CLSA-2026-1776170814 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

8.8CVSS5.8AI score0.00794EPSS
Exploits1References1
Rows per page
Query Builder