Lucene search
+L

950 matches found

OSV
OSV
added 2026/04/28 6:0 a.m.3 views

CVE-2026-7233 Artifex MuPDF CFF Index subset-cff.c fz_subset_cff_for_gids out-of-bounds

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...

4.8CVSS5.3AI score0.00238EPSS
Exploits1References8
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.14 views

Mozilla -- Privilege escalation in the Debugger component

https://bugzilla.mozilla.org/showbug.cgi?id=2023753 reports: Privilege escalation in the Debugger component...

8.8CVSS5.2AI score0.00226EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.9 views

Mozilla -- Incorrect boundary

https://bugzilla.mozilla.org/showbug.cgi?id=2027501 reports: Incorrect boundary conditions in the WebRTC component...

7.5CVSS5.2AI score0.00306EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.12 views

Mozilla -- Other issue in the JavaScript Engine component

https://bugzilla.mozilla.org/showbug.cgi?id=2023343 reports: Other issue in the JavaScript Engine component...

5.3CVSS5.2AI score0.00208EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.5 views

Mozilla -- Invalid pointer

https://bugzilla.mozilla.org/showbug.cgi?id=2022746 reports: Invalid pointer in the Audio/Video: Playback component...

5.3CVSS5.1AI score0.00256EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.14 views

Mozilla -- Incorrect boundary conditions

https://bugzilla.mozilla.org/showbug.cgi?id=2021770 reports: Incorrect boundary conditions in the WebRTC: Networking component...

7.8CVSS5.2AI score0.0011EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.17 views

Mozilla -- Use-after-free

https://bugzilla.mozilla.org/showbug.cgi?id=2013619 reports: Use-after-free in the JavaScript: WebAssembly component...

7.5CVSS5.2AI score0.00429EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/04/21 12:0 a.m.7 views

Mozilla -- Use-after-free

https://bugzilla.mozilla.org/showbug.cgi?id=2027541 reports: Use-after-free in the JavaScript Engine component...

7.5CVSS5.2AI score0.00387EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/04/13 12:0 a.m.8 views

AnyPoC: Universal Proof-Of-Concept Test Generation for Scalable LLM-Based Bug Detection

While recent LLM-based agents can identify many candidate bugs in source code, their reports remain static hypotheses that require manual validation, limiting the practicality of automated bug detection. We frame this challenge as a test generation task: given a candidate report, synthesizing an...

6AI score
Exploits0
NVD
NVD
added 2026/04/09 4:16 p.m.6 views

CVE-2025-15480

In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs...

9.1CVSS0.00307EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/09 3:3 p.m.4 views

CVE-2025-14551

In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, Subiquity could include certain user credentials, such as the user's plaintext Wi-Fi password, in the attached logs...

5.9AI score0.00278EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/09 3:2 p.m.28 views

CVE-2025-15480 Senstive information disclosure was affecting ubuntu-desktop-provision

In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs...

6.9CVSS0.00307EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/09 3:2 p.m.2 views

CVE-2025-15480

In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password hash in the attached logs...

5.9AI score0.00307EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2026/04/07 12:0 a.m.9 views

Mozilla -- Incorrect boundary conditions

https://bugzilla.mozilla.org/showbug.cgi?id=2022554 reports: Incorrect boundary conditions in the Graphics: WebGPU component...

8.8CVSS5.9AI score0.00304EPSS
Exploits0References1
OSV
OSV
added 2026/03/20 11:57 a.m.3 views

SUSE-SU-2026:20769-1 Security update for ovmf

This update for ovmf fixes the following issue: - CVE-2025-59438: mbedtls: padding oracle attack possible through timing of cipher error reporting bsc1252441...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/03/07 12:12 p.m.133 views

WordpressExploiter

made with love no...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/04 12:33 p.m.4 views

SUSE-SU-2026:0801-1 Security update for libxslt

This update for libxslt fixes the following issues: - CVE-2025-10911: use-after-free will be fixed on libxml2 side instead bsc1250553...

5.5CVSS5.9AI score0.00161EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/19 12:26 a.m.4 views

SUSE CVE-2026-23214

In the Linux kernel, the following vulnerability has been resolved: btrfs: reject new transactions if the fs is fully read-only BUG There is a bug report where a heavily fuzzed fs is mounted with all rescue mount options, which leads to the following warnings during unmount: BTRFS: Transaction...

4.6CVSS5.6AI score0.00112EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2026/01/14 9:53 a.m.4 views

kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock

A vulnerability was found in the Linux kernel's Controller Area Network CAN protocol, within the J1939 protocol implementation. This issue occurs due to a potential deadlock caused by a race condition involving three locks: j1939sockslock, activesessionlistlock, and sksessionqueuelock. This issue...

5.5CVSS7.2AI score0.00183EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/01/12 12:29 p.m.110 views

bug_report

b...

5.9AI score
Exploits0
Rows per page
Query Builder