Lucene search
K

38642 matches found

RedHat Linux
RedHat Linux
added 2026/03/30 4:5 p.m.5 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component...

9.6CVSS5.9AI score0.00773EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/30 4:5 p.m.2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component...

10CVSS5.9AI score0.00665EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/30 4:5 p.m.3 views

firefox: thunderbird: Sandbox escape due to use-after-free in the Disability Access APIs component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to use-after-free in the Disability Access APIs component...

10CVSS5.8AI score0.00531EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/30 4:5 p.m.3 views

firefox: thunderbird: Undefined behavior in the WebRTC: Signaling component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Undefined behavior in the WebRTC: Signaling component...

8.1CVSS5.8AI score0.00299EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/30 4:5 p.m.3 views

firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Graphics: Canvas2D component...

7.5CVSS5.8AI score0.00577EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/30 3:17 p.m.7 views

Security Bulletin: IBM Maximo Application Suite - Manage Component uses ajv-6.12.6 in multiple applications which is vulnerable CVE-2025-69873

Summary IBM Maximo Application Suite - Manage Component uses ajv-6.12.6 in multiple applications which is vulnerable CVE-2025-69873 Vulnerability Details CVEID:CVE-2025-69873 DESCRIPTION: ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS...

7.5CVSS6.1AI score0.00492EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/30 11:47 a.m.9 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses WebSphere Application Server Liberty which is affected by cross-site scripting and vulnerable to CVE-2025-32434.

Summary IBM Maximo Application Suite - Monitor Component uses WebSphere Application Server Liberty which is affected by cross-site scripting and vulnerable to CVE-2025-32434. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-12635 DESCRIPTION: I...

9.8CVSS5.8AI score0.01878EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/30 10:54 a.m.4 views

CVE-2026-5034

A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /editcostumer.php of the component Parameter Handler. This manipulation of the argument cosid causes sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS5.8AI score0.00329EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/30 7:18 a.m.11 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses multiple jar packages which are vulnerable to CVE-2025-24970, CVE-2025-55163.

Summary IBM Maximo Application Suite - Monitor Component uses multiple jar packages which are vulnerable to CVE-2025-24970, CVE-2025-55163. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-24970 DESCRIPTION: Netty, an asynchronous, event-driven...

8.2CVSS6.9AI score0.01966EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/30 7:17 a.m.7 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses pillow-12.1.0-cp311-cp311-manylinux_2_27_x86_64.manylinux_2_28_x86_64.whl which is vulnerable to CVE-2026-25990.

Summary IBM Maximo Application Suite - Monitor Component uses pillow-12.1.0-cp311-cp311-manylinux227x8664.manylinux228x8664.whl which is vulnerable to CVE-2026-25990. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-25990 DESCRIPTION: Pillow is...

8.6CVSS6AI score0.00367EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/30 5:0 a.m.8 views

CVE-2026-5021

A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

9CVSS6.2AI score0.00632EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.8 views

FRRouting 访问控制错误漏洞

FRouting is an open-source network routing software suite that runs on Unix-like platforms. Versions of FRRouting 10.5.1 and earlier contained a access control vulnerability, which stemmed from incorrect operations on the function processtype2route in the file bgpd/bgpevpn.c. This vulnerability...

4.2CVSS5.8AI score0.00279EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.5 views

PT-2026-29206

Name of the Vulnerable Software and Affected Versions gdk-pixbuf affected versions not specified Description A flaw exists in the gdk-pixbuf library within the JPEG image loader. This heap-based buffer overflow occurs due to improper validation of color component counts when processing a speciall...

7.8CVSS7.5AI score0.01069EPSS
Exploits1References104
UbuntuCve
UbuntuCve
added 2026/03/29 9:15 a.m.2 views

CVE-2026-5037

A vulnerability was determined in mxml up to 4.0.4. This issue affects the function indexsort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr can lead to stack-based buffer overflow. The attack is restricted to local execution. The exploit ha...

4.8CVSS5.6AI score0.00128EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/03/29 7:45 a.m.29 views

CVE-2026-5036 Tenda 4G06 Endpoint DhcpListClient fromDhcpListClient stack-based overflow

A vulnerability was found in Tenda 4G06 04.06.01.29. This vulnerability affects the function fromDhcpListClient of the file /goform/DhcpListClient of the component Endpoint. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack can be initiated remotely...

9CVSS0.0056EPSS
Exploits1References5
OSV
OSV
added 2026/03/29 6:9 a.m.2 views

BELL-CVE-2026-23390

Bulletin has no description...

7.8CVSS5.8AI score0.00131EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/29 1:15 a.m.33 views

CVE-2026-5021 Tenda F453 httpd PPTPUserSetting fromPPTPUserSetting stack-based overflow

A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

9CVSS0.00632EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/29 1:15 a.m.6 views

CVE-2026-5021 Tenda F453 httpd PPTPUserSetting fromPPTPUserSetting stack-based overflow

A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

9CVSS6.1AI score0.00632EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/29 12:0 a.m.13 views

Tenda F453 安全漏洞

The Tenda F453 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.3 of the Tenda F453 contains a security vulnerability. This vulnerability stems from improper handling of the parameter “delno” in the function “fromPPTPUserSetting” within the httpd component, which may lead...

9CVSS7.7AI score0.00632EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/28 11:9 p.m.5 views

CVE-2026-4962

A security flaw has been discovered in UltraVNC up to 1.6.4.0. Affected by this issue is some unknown functionality in the library version.dll of the component Service. The manipulation results in uncontrolled search path. The attack needs to be approached locally. This attack is characterized by...

7.3CVSS6.4AI score0.00229EPSS
Exploits1References1
Rows per page
Query Builder