Lucene search
K

61339 matches found

AlpineLinux
AlpineLinux
added 2026/06/10 10:2 p.m.6 views

CVE-2026-53460

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, a missing check for maximum memory request in AcquireAlignedMemory could trigger an out-of-Memory condition. This issue has been patched in versions 6.9.13-50 a...

7.5CVSS5.3AI score0.00346EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/10 10:0 p.m.9 views

kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done()

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handleauthdone Perform an explicit bounds check on payloadlen to avoid a possible out-of-bounds access in the callout. idryomov: changelog...

9.8CVSS7AI score0.00351EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2026/06/10 9:58 p.m.9 views

CVE-2026-48994

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-24, a missing check of a return value could lead to a heap buffer over-write in the MAT decoder on 32-bit systems. This issue has been patched in versions 6.9.13-48...

5.9CVSS5.6AI score0.00227EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 9:55 p.m.7 views

CVE-2026-48734 ImageMagick: Stack Overflow in MVG decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, a crafted MVG file could result in a stack overflow due to a missing depth or visited-set check. This issue has been patched in versions 6.9.13-49 and 7.1.2-24...

5.5CVSS5.4AI score0.00107EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 9:55 p.m.27 views

CVE-2026-48734

ImageMagick CVE-2026-48734 affects the MVG decoder and causes a stack overflow due to a missing depth or visited-set check. Affected versions are prior to 6.9.13-49 and 7.1.2-24. The issue can lead to denial of service with a crafted MVG file that exploits the stack overflow. The CVSS data indica...

5.5CVSS5.4AI score0.00107EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/06/10 9:55 p.m.7 views

CVE-2026-48734

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, a crafted MVG file could result in a stack overflow due to a missing depth or visited-set check. This issue has been patched in versions 6.9.13-49 and 7.1.2-24...

5.5CVSS5.4AI score0.00107EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 9:45 p.m.31 views

CVE-2026-46559 ImageMagick: Heap Buffer Over-Write of a single byte in the JP2 encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

4CVSS0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 9:44 p.m.28 views

CVE-2026-46557 ImageMagick: Stack overflow in fx operation

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-23, due to a missing depth check a stack overflow can occur in the fx operation by passing a crafted argument. This issue has been patched in version 7.1.2-23...

6.2CVSS0.0012EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 9:44 p.m.9 views

EUVD-2026-36172

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-23, due to a missing depth check a stack overflow can occur in the fx operation by passing a crafted argument. This issue has been patched in version 7.1.2-23...

6.2CVSS5.3AI score0.0012EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 9:44 p.m.23 views

CVE-2026-46557

ImageMagick (fx operation) is affected by CVE-2026-46557 due to a missing depth check that can cause a stack overflow when processing crafted inputs. Affected versions are pre-7.1.2-23 (and related Debian/OSV entries reference the same issue); the vulnerability is fixed in 7.1.2-23. Exploitation ...

6.2CVSS5.3AI score0.0012EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2026/06/10 9:44 p.m.10 views

CVE-2026-46557

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-23, due to a missing depth check a stack overflow can occur in the fx operation by passing a crafted argument. This issue has been patched in version 7.1.2-23...

6.2CVSS5.3AI score0.0012EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/06/10 9:44 p.m.10 views

CVE-2026-46557

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-23, due to a missing depth check a stack overflow can occur in the fx operation by passing a crafted argument. This issue has been patched in version 7.1.2-23...

6.2CVSS5.3AI score0.0012EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/10 9:40 p.m.7 views

CVE-2026-46521 ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compression

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, when using LZMA compression in the MIFF encoder an out of bounds write can occur due to a missing check. This issue has been patched in versions 6.9.13-48 and...

5.5CVSS5.3AI score0.00111EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 9:40 p.m.24 views

CVE-2026-46521

CVE-2026-46521 affects ImageMagick: a heap buffer over-write in the MIFF encoder when using LZMA compression due to a missing check. Exploitation is local with low complexity and requires user interaction, potentially impacting availability. A patch is available: fixed in ImageMagick versions 6.9...

5.5CVSS5.3AI score0.00111EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/10 9:4 p.m.8 views

CVE-2026-49958

Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use TOCTOU race condition vulnerability in the gitdiscard function within api/workspacegit.py that allows attackers to delete files outside the configured workspace boundary by replacing a validated path component with a symlin...

5CVSS5.6AI score0.00081EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.11 views

CVE-2026-45487

Time-of-check time-of-use TOCTOU race condition in Program Compatibility Assistant Service allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00184EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 8:9 p.m.8 views

CVE-2026-46669 `openvm-pairing` pairing check missing proper subfield check on scaling factor

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS5.4AI score0.00226EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/10 8:9 p.m.12 views

EUVD-2026-36121

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS5.4AI score0.00226EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/10 8:9 p.m.31 views

CVE-2026-46669 `openvm-pairing` pairing check missing proper subfield check on scaling factor

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS0.00226EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 8:9 p.m.15 views

CVE-2026-46669

OpenVM-pairing vulnerability CVE-2026-46669: the openvm-pairing guest library’s try_honest_pairing_check previously did not verify that the scaling factor s lies in a proper subfield of Fp12, allowing incorrect pairing results. The issue has been patched in version 1.6.0; users should upgrade to ...

8.7CVSS5.4AI score0.00226EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder