Lucene search
K

11 matches found

OSV
OSV
added 2026/06/22 5:23 p.m.2 views

USN-8447-3 google-guest-agent vulnerabilities

USN-8447-1 fixed vulnerabilities in Go Cryptography. This update provides the corresponding updates for Go Cryptography code embedded in Google Guest Agent. Original advisory details: It was discovered that Go Cryptography did not properly handle SSH global request responses. A remote attacker...

10CVSS6.1AI score0.005EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.9 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS : Go Cryptography vulnerabilities (USN-8447-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8447-1 advisory. It was discovered that Go Cryptography did not properly handle SSH global request responses. ...

10CVSS6.3AI score0.005EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2026/06/18 8:5 p.m.19 views

USN-8447-2: LXD vulnerabilities

USN-8447-1 fixed vulnerabilities in Go Cryptography. This update provides the corresponding updates for Go Cryptography code embedded in LXD for CVE-2026-39830, CVE-2026-39833, CVE-2026-39834, and CVE-2026-42508. Original advisory details: It was discovered that Go Cryptography did not properly...

9.1CVSS5.8AI score0.005EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/17 8:21 p.m.20 views

CVE-2026-35512 xrdp: Heap buffer overflow in EGFX channel

xrdp is an open source RDP server. Versions through 0.10.5 have a heap-based buffer overflow in the EGFX graphics dynamic virtual channel implementation due to insufficient validation of client-controlled size parameters, allowing an out-of-bounds write via crafted PDUs. Pre-authentication...

8.7CVSS0.00583EPSS
Exploits0References2
CVE
CVE
added 2026/03/25 10:33 a.m.17 views

CVE-2026-23395

CVE-2026-23395 affects the Linux kernel Bluetooth L2CAP handling of ECRED connection requests. The issue stems from accepting multiple L2CAP_ECRED_CONN_REQs regardless of the command identifier, which can cause multiple requests to be marked pending (FLAG_DEFER_SETUP) and may lead to allocating m...

8.8CVSS5.7AI score0.00249EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2025/11/10 9:27 p.m.42 views

CVE-2025-64182

CVE-2025-64182 affects the OpenEXR Python legacy adapter (OpenEXR.InputFile) in multiple OpenEXR releases. The root cause is a memory-safety bug from integer overflow and unchecked allocation in InputFile.channel() and InputFile.channels(), leading to heap overflow (32‑bit) or NULL dereference (6...

7.8CVSS7.7AI score0.0021EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/09/18 2:15 p.m.2 views

UBUNTU-CVE-2023-53400

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix Oops by 9.1 surround channel names getlineoutpfx may trigger an Oops by overflowing the static array with more than 8 channels. This was reported for MacBookPro 12,1 with Cirrus codec. As a workaround, extend for t...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References11
OSV
OSV
added 2025/09/05 12:43 p.m.4 views

OESA-2025-2196 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.8CVSS6.7AI score0.04065EPSS
Exploits7References8
RedHat Linux
RedHat Linux
added 2020/11/04 1:25 a.m.5 views

freerdp: Integer overflow in VIDEO channel

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the serve...

6.9CVSS6AI score0.01349EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/09/29 8:15 p.m.7 views

freerdp: Integer overflow in VIDEO channel

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the serve...

6.9CVSS6AI score0.01349EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2016/08/16 12:0 a.m.6 views

The vulnerability of the Firefox browser, which allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the WebSocketChannel class in the Firefox WebSockets subsystem is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code or trigger a service failure memory corruption using specially crafted packets that cause incorrect...

7.5CVSS8.5AI score0.04178EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder