Lucene search
+L

12 matches found

NVD
NVD
added 2026/05/14 2:16 p.m.21 views

CVE-2026-6575

Buffer over-read in PostgreSQL function pgrestoreattributestats accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL...

4.3CVSS0.00208EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/14 1:0 p.m.43 views

EUVD-2026-30287

Buffer over-read in PostgreSQL function pgrestoreattributestats accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL...

4.3CVSS5.8AI score0.00208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/14 1:0 p.m.10 views

CVE-2026-6575 PostgreSQL pg_restore_attribute_stats accepts values that cause query planning to read past end of stats array

Buffer over-read in PostgreSQL function pgrestoreattributestats accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL...

4.3CVSS5.8AI score0.00208EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.12 views

PT-2026-40919

Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 18.4 PostgreSQL versions prior to 17.10 PostgreSQL versions prior to 16.14 PostgreSQL versions prior to 15.18 PostgreSQL versions prior to 14.23 Description An externally-controlled format string in the timeofday...

8.8CVSS5.8AI score0.00668EPSS
Exploits0References96
OSV
OSV
added 2025/12/11 4:15 a.m.5 views

UBUNTU-CVE-2025-14157

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 6.3 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allowed an authenticated user to cause a Denial of Service condition by sending crafted API calls with large content parameters...

6.5CVSS5.8AI score0.00275EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.11 views

PT-2025-50573

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 18.4 through 18.4.5 GitLab CE/EE versions 18.5 through 18.5.3 GitLab CE/EE versions 18.6 through 18.6.1 Description GitLab CE/EE is affected by an issue where an authenticated user could potentially perform unauthorized...

8.7CVSS6.4AI score0.0041EPSS
Exploits0References13
CVE
CVE
added 2025/09/26 9:4 a.m.23 views

CVE-2025-10858

GitLab CE/EE vulnerable to unauthenticated DoS when uploading specially crafted large JSON files. Affected branches: all versions before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1. Impact is Denial of Service (availability impact). CVSS 3.1 base score 7.5 (HIGH) with network attack vector...

7.5CVSS6.5AI score0.00559EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.4 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS and Apple iPadOS versions prior to 18.4, which originates from a website that...

9.8CVSS6.2AI score0.00256EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/29 12:0 a.m.1 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS before 18.4 and Apple iPadOS before 18.4, which stems from vulnerable code th...

5.7CVSS8.8AI score0.00295EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/04/29 12:0 a.m.3 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS before 18.4 and Apple iPadOS before 18.4, which stems from a type confusion...

6.5CVSS8.8AI score0.00318EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/04/29 12:0 a.m.5 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to 18.4 and Apple iPadOS prior to 18.4, which stems from an...

5.7CVSS8.9AI score0.00253EPSS
Exploits0References7
OSV
OSV
added 2021/07/22 6:15 p.m.18 views

AZL-6607 CVE-2021-36222 affecting package krb5 for versions less than 1.19.2-1

ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...

7.5CVSS6.8AI score0.10276EPSS
Exploits0References1
Rows per page
Query Builder