Lucene search
K

38642 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.5 views

CVE-2026-25168

Null pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to deny service locally...

6.2CVSS5.8AI score0.0048EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.3 views

CVE-2026-25180

Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally...

5.5CVSS5.8AI score0.00655EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.6 views

CVE-2026-21991

A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider names...

5.5CVSS5.9AI score0.00181EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:5 p.m.3 views

CVE-2025-15606

A Denial-of-Service DoS vulnerability in the httpd component of TP-Link's TD-W8961N v4.0 due to improper input sanitization, allows crafted requests to trigger a processing error that causes the httpd service to crash. Successful exploitation may allow the attacker to cause service interruption,...

7.1CVSS5.8AI score0.00292EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.5 views

CVE-2026-30958

OneUptime is a solution for monitoring and managing online services. Prior to 10.0.21, an unauthenticated path traversal in the /workflow/docs/:componentName endpoint allows reading arbitrary files from the server filesystem. The componentName route parameter is concatenated directly into a file...

8.6CVSS7.4AI score0.01102EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.5 views

CVE-2026-23668

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7CVSS7.4AI score0.0364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.3 views

CVE-2026-23654

Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00933EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 2:59 p.m.5 views

CVE-2026-28520

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. When the victim's smart hardware connects to an attacker-controlled AP hotspot, the attacker can exploit the overflow to execute arbitrary code on the affected embedded device...

8.6CVSS6.4AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 2:58 p.m.5 views

CVE-2026-4188

A security flaw has been discovered in D-Link DIR-619L 2.06B01. The affected element is the function formSchedule of the file /goform/formSchedule of the component boa. Performing a manipulation of the argument curTime results in stack-based buffer overflow. The attack may be initiated remotely...

9CVSS7.9AI score0.00453EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 2:58 p.m.6 views

CVE-2026-4181

A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This affects an unknown function of the file /goform/form2RepeaterStep2.cgi of the component goahead. The manipulation of the argument key1/key2/key3/key4/pskValue results in stack-based buffer overflow. The attack may be launched...

10CVSS7.9AI score0.01184EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/03/26 2:47 p.m.4 views

SUSE CVE-2025-70888

An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component...

9.8CVSS5.9AI score0.00482EPSS
Exploits0References3
NVD
NVD
added 2026/03/26 2:16 p.m.10 views

CVE-2025-55263

HCL Aftermarket DPC is affected by Hardcoded Sensitive Data which allows attacker to gain access to the source code or if it is stored in insecure repositories, they can easily retrieve these hardcoded secrets...

7.5CVSS0.00191EPSS
Exploits0References1
CVE
CVE
added 2026/03/26 1:2 p.m.10 views

CVE-2025-55266

CVE-2025-55266 concerns HCL Aftermarket DPC, where a session fixation flaw could allow an attacker to hijack a user session and perform unauthorized transactions on behalf of the user. The provided documents identify the impact (session takeover) and the affected product but do not specify affect...

6.5CVSS5.8AI score0.00251EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/26 12:59 p.m.20 views

CVE-2025-55271 HCL Aftermarket DPC is affected by HTTP Response Splitting vulnerability

HCL Aftermarket DPC is affected by HTTP Response Splitting vulnerability where in depending on how the web application handles the split response, an attacker may be able to execute arbitrary commands or inject harmful content into the response...

3.1CVSS0.00318EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.13 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component...

10CVSS7.2AI score0.00665EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.8 views

firefox: thunderbird: Mitigation bypass in the Networking: HTTP component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Mitigation bypass in the Networking: HTTP component...

9.8CVSS7.2AI score0.00459EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.4 views

firefox: thunderbird: Incorrect boundary conditions, integer overflow in the Graphics component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions, integer overflow in the Graphics component...

7.5CVSS7.2AI score0.00772EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.11 views

firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: Playback component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Audio/Video: Playback component...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.10 views

firefox: thunderbird: Use-after-free in the CSS Parsing and Computation component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the CSS Parsing and Computation component...

9.8CVSS7.2AI score0.00483EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/26 11:38 a.m.18 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Telemetry component...

9.6CVSS7.2AI score0.00539EPSS
Exploits0References6
Rows per page
Query Builder