Lucene search
K

86 matches found

OpenVAS
OpenVAS
added 2026/02/09 12:0 a.m.4 views

Ubuntu: Security Advisory (USN-8017-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.5AI score0.00325EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2026/02/05 1:12 p.m.11 views

USN-8017-1: GLib vulnerabilities

It was discovered that GLib incorrectly parsed large Base64 data. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2026-1484 It was discovered that GLib incorrectly parsed certain treemagic files. An attacker could...

5.4CVSS5.7AI score0.00325EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2026/01/15 10:15 p.m.9 views

devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse

Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...

7.5CVSS6.8AI score0.0057EPSS
Exploits0References5Affected Software1
SUSE CVE
SUSE CVE
added 2026/01/14 12:28 a.m.4 views

SUSE CVE-2025-15514

Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal model image processing functionality. When processing base64-encoded image data via the /api/chat endpoint, the application fails to validate that the decoded data represents valid...

8.7CVSS7AI score0.00698EPSS
Exploits1References3
OSV
OSV
added 2026/01/12 11:15 p.m.4 views

CVE-2025-15514

Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal model image processing functionality. When processing base64-encoded image data via the /api/chat endpoint, the application fails to validate that the decoded data represents valid...

7.5CVSS5.8AI score
Exploits0References4
NVD
NVD
added 2026/01/12 11:15 p.m.4 views

CVE-2025-15514

Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal model image processing functionality. When processing base64-encoded image data via the /api/chat endpoint, the application fails to validate that the decoded data represents valid...

8.7CVSS0.00698EPSS
Exploits1References7
AlpineLinux
AlpineLinux
added 2026/01/12 11:3 p.m.3 views

CVE-2025-15514

Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal model image processing functionality. When processing base64-encoded image data via the /api/chat endpoint, the application fails to validate that the decoded data represents valid...

8.7CVSS7AI score0.00698EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/12/19 2:9 p.m.4 views

CVE-2025-63950

An insecure deserialization vulnerability exists in the download.php script of the to3k Twittodon application through commit b1c58a7d1dc664b38deb486ca290779621342c0b 2023-02-28. The 'obj' parameter receives base64-encoded data that is passed directly to the unserialize function without validation...

7.5CVSS7.2AI score0.00437EPSS
Exploits1References1
NVD
NVD
added 2025/12/18 9:15 p.m.3 views

CVE-2025-63950

An insecure deserialization vulnerability exists in the download.php script of the to3k Twittodon application through commit b1c58a7d1dc664b38deb486ca290779621342c0b 2023-02-28. The 'obj' parameter receives base64-encoded data that is passed directly to the unserialize function without validation...

7.5CVSS0.00437EPSS
Exploits1References2
OSV
OSV
added 2025/12/18 9:15 p.m.1 views

CVE-2025-63950

An insecure deserialization vulnerability exists in the download.php script of the to3k Twittodon application through commit b1c58a7d1dc664b38deb486ca290779621342c0b 2023-02-28. The 'obj' parameter receives base64-encoded data that is passed directly to the unserialize function without validation...

7.5CVSS5.9AI score0.00437EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/18 12:0 a.m.22 views

CVE-2025-63950

An insecure deserialization vulnerability exists in the download.php script of the to3k Twittodon application through commit b1c58a7d1dc664b38deb486ca290779621342c0b 2023-02-28. The 'obj' parameter receives base64-encoded data that is passed directly to the unserialize function without validation...

0.00437EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/11/28 12:22 a.m.3 views

SUSE CVE-2025-64335

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS6.8AI score0.00359EPSS
Exploits0References3
OSV
OSV
added 2025/11/26 11:15 p.m.4 views

DEBIAN-CVE-2025-64335

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS5.1AI score0.00359EPSS
Exploits0References1
NVD
NVD
added 2025/11/26 11:15 p.m.3 views

CVE-2025-64335

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS0.00359EPSS
Exploits0References4
OSV
OSV
added 2025/11/26 11:15 p.m.4 views

UBUNTU-CVE-2025-64335

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS5.6AI score0.00359EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/11/26 10:39 p.m.10 views

CVE-2025-64335 Suricata is vulnerable to a null deref when used with base64_data

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS0.00359EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/11/26 10:39 p.m.3 views

CVE-2025-64335

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS6.8AI score0.00359EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/11/26 10:39 p.m.3 views

CVE-2025-64335 Suricata is vulnerable to a null deref when used with base64_data

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS6.4AI score0.00359EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/26 10:39 p.m.3 views

EUVD-2025-199776

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64data. This issue has been patched in...

7.5CVSS6.2AI score0.00359EPSS
Exploits0References2
CVE
CVE
added 2025/11/26 10:39 p.m.19 views

CVE-2025-64335

CVE-2025-64335 affects Suricata 8.x from 8.0.0 up to before 8.0.2. The issue is a NULL dereference triggered when the entropy keyword is used in conjunction with base64_data, leading to a crash. The vulnerability has been patched in version 8.0.2. Mitigation includes upgrading to 8.0.2 or later; ...

7.5CVSS6.4AI score0.00359EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder