Lucene search
+L

4267 matches found

nuclei
nuclei
added yesterday133 views

Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun

Netgear RAX43 version 1.0.3.96 contains a command injection and authentication bypass vulnerability. The readycloudcontrol.cgi CGI application is vulnerable to command injection in the name parameter. Additionally, the URL parsing functionality in the cgi-bin endpoint of the router containers a...

8.8CVSS7AI score0.0853EPSS
Exploits0References5
redhat
redhat
added 3 days ago8 views

kernel: crypto: ccp - copy IV using skcipher ivsize

A flaw was found in the Linux kernel's cryptographic coprocessor CCP driver. When processing AFALG rfc3686-ctr-aes-ccp requests, the ccpaescomplete function attempts to restore more data than the allocated buffer for the Initialization Vector IV can hold. This leads to a buffer overrun, which can...

7.8CVSS6.1AI score0.0014EPSS
Exploits0References5
osv
osv
added 2026/07/09 12:54 p.m.3 views

OESA-2026-2961 fluidsynth security update

FluidSynth is a free software synthesizer. Its currently based on the SoundFont 2 specifications and supports real time MIDI effect controls. It can be used as a shared library for embedding in other applications, can play MIDI files and has a command line shell. Many other applications use...

6.3AI score
Exploits0References2
ptsecurity
ptsecurity
added 2026/07/09 12:0 a.m.14 views

PT-2026-56852

Name of the Vulnerable Software and Affected Versions pymonocypher versions prior to 4.0.2.8 Description The argon2i 32 function fails to verify the size of the nb blocks buffer. If the provided buffer is smaller than required by the API contract, the function may write beyond the buffer...

5.1CVSS6.1AI score
Exploits0References8
mageia
mageia
added 2026/07/08 4:36 p.m.4 views

Updated openvpn packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Possible 1-byte buffer overrun on NTLMv2 proxy responses. CVE-2026-11771 Memory-leak in tls-crypt-v2 client key handling that could lead to out-of-memory situations and subsequent server crashes. CVE-2026-12932 Use-after-free bug in ackwritebuf,...

7.5CVSS7.3AI score0.00549EPSS
Exploits0References4
osv
osv
added 2026/07/08 4:36 p.m.2 views

MGASA-2026-0236 Updated openvpn packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Possible 1-byte buffer overrun on NTLMv2 proxy responses. CVE-2026-11771 Memory-leak in tls-crypt-v2 client key handling that could lead to out-of-memory situations and subsequent server crashes. CVE-2026-12932 Use-after-free bug in ackwritebuf,...

7.5CVSS7.1AI score0.00549EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 3:45 p.m.5 views

gstreamer1-plugins-good: GStreamer: Heap buffer overflow in WavPack decoder via integer overflow

A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. When processing a specially crafted WavPack file, an integer overflow in the buffer size calculation 4 blocksamples channels in gstwavpackdechandleframe causes a very small heap allocation. The WavPack library then writes...

7.6CVSS6.4AI score0.0031EPSS
Exploits0References4
susecve
susecve
added 2026/06/27 1:52 a.m.7 views

SUSE CVE-2026-54679

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvpstringappend has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2...

8.1CVSS5.9AI score0.00103EPSS
Exploits0References3
osv
osv
added 2026/06/26 11:11 p.m.4 views

GHSA-44CP-C3WW-9RV5 ImageMagick has a Heap Buffer Over-Write in SF3 encoder when writing multi-frame image

An crafted multi-frame can result in a heap buffer over-write when encoding it with the SF3 encoder...

6.2CVSS5.9AI score0.00112EPSS
Exploits0References4
osv
osv
added 2026/06/26 7:23 a.m.2 views

OPENSUSE-SU-2026:21062-1 Security update for capnproto

This update for capnproto fixes the following issues: Update to version 1.4.0. Security issues fixed: - CVE-2026-32239: negative Content-Length conversion treated as impossibly large length by KJ-HTTP can lead to HTTP smuggling bsc1259638. - CVE-2026-32240: integer overflow when KJ-HTTP...

6.5CVSS6AI score0.00207EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/06/25 11:43 p.m.7 views

CVE-2026-54679

A flaw was found in jq, a command-line JSON processor. On 32-bit systems, a local attacker could exploit an integer overflow vulnerability in the jvpstringappend function. This could lead to a massive buffer overrun, resulting in a denial of service DoS condition. Mitigation Mitigation for this...

6.9CVSS5.8AI score0.00103EPSS
Exploits0References4
osv
osv
added 2026/06/25 9:16 p.m.5 views

DEBIAN-CVE-2026-6681

The PKCS7 decode path ignores the caller-supplied output buffer size outputSz, allowing decoded content to be written past the bounds of the provided buffer. This affects wolfSSL 5.9.0 and earlier and was fixed in the 5.9.1 release...

5.3CVSS5.9AI score0.00256EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/25 6:17 p.m.12 views

CVE-2026-53016

A flaw was found in the Linux kernel's cryptographic coprocessor CCP driver. When processing AFALG rfc3686-ctr-aes-ccp requests, the ccpaescomplete function attempts to restore more data than the allocated buffer for the Initialization Vector IV can hold. This leads to a buffer overrun, which can...

7.8CVSS6.1AI score0.0014EPSS
Exploits0References4
nvd
nvd
added 2026/06/25 6:16 p.m.15 views

CVE-2026-54679

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvpstringappend has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2...

6.9CVSS0.00103EPSS
Exploits0References1
cve
cve
added 2026/06/25 5:16 p.m.35 views

CVE-2026-54679

CVE-2026-54679 affects the jq tool prior to version 1.8.2 on 32-bit systems. The vulnerability is in jvp_string_append where an integer overflow could trigger a massive buffer overrun, with a local attack vector and potential high impact on availability as described in the CVE. The issue is fixed...

6.9CVSS6AI score0.00103EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/06/25 5:16 p.m.25 views

CVE-2026-54679 jq: potential integer overflow in jvp_string_append

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvpstringappend has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2...

6.9CVSS0.00103EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2026/06/25 5:16 p.m.9 views

CVE-2026-54679

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvpstringappend has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2...

6.9CVSS6AI score0.00103EPSS
Exploits0References1
osv
osv
added 2026/06/25 5:16 p.m.2 views

CVE-2026-54679 jq: potential integer overflow in jvp_string_append

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvpstringappend has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2...

6.9CVSS6.1AI score0.00103EPSS
Exploits0References3
nvd
nvd
added 2026/06/25 9:16 a.m.9 views

CVE-2026-53209

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: reject oversized Broadcast Announcement prepend Existing advertising instances can already hold the maximum extended advertising payload. When hciadvbcastannoucement prepends the Broadcast Announcement service...

7.8CVSS0.00138EPSS
Exploits0References6
osv
osv
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53209

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: reject oversized Broadcast Announcement prepend Existing advertising instances can already hold the maximum extended advertising payload. When hciadvbcastannoucement prepends the Broadcast Announcement service...

7.8CVSS5.9AI score0.00138EPSS
Exploits0References9
Rows per page
Query Builder