Lucene search
K

283 matches found

NVD
NVD
added 2026/07/02 12:16 p.m.4 views

CVE-2026-11946

An unauthenticated remote attacker can exhaust server memory via the GetEndpoints Discovery Service in open62541. The endpointUrl field of GetEndpointsRequest is not validated for length. An attacker can declare an arbitrarily large string up to 4.09 GB via the UInt32 length field delivered acros...

7.5CVSS0.00386EPSS
Exploits0References3
CVE
CVE
added 2026/07/02 10:54 a.m.15 views

CVE-2026-11946

CVE-2026-11946 affects open62541 (1.4.0–1.4.16, 1.5.0–1.5.4, master). An unauthenticated remote attacker can exhaust server memory through GetEndpoints by sending an oversized endpointUrl in GetEndpointsRequest; length is not validated, allowing ~4.09 GB strings split across chunks, buffered in R...

7.5CVSS5.8AI score0.00386EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/02 10:54 a.m.39 views

CVE-2026-11946 GetEndpoints Memory Exhaustion in open62541

An unauthenticated remote attacker can exhaust server memory via the GetEndpoints Discovery Service in open62541. The endpointUrl field of GetEndpointsRequest is not validated for length. An attacker can declare an arbitrarily large string up to 4.09 GB via the UInt32 length field delivered acros...

7.5CVSS0.00386EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/02 10:54 a.m.7 views

CVE-2026-11946

An unauthenticated remote attacker can exhaust server memory via the GetEndpoints Discovery Service in open62541. The endpointUrl field of GetEndpointsRequest is not validated for length. An attacker can declare an arbitrarily large string up to 4.09 GB via the UInt32 length field delivered acros...

7.5CVSS5.8AI score0.00386EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/07/02 8:16 a.m.9 views

CVE-2026-33592

An unauthenticated remote attacker can exhaust server memory via the FindServers Discovery Service in open62541. The serverUris field of FindServersRequest is not validated for length or array size. An attacker can declare an arbitrarily large string up to 3.9 GB delivered across intermediate...

7.5CVSS0.00388EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.8 views

CVE-2026-42836

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS5.6AI score0.00198EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.16 views

CVE-2026-42836

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS0.00198EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.11 views

EUVD-2026-35590

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS5.6AI score0.00198EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.69 views

CVE-2026-42836

CVE-2026-42836: A race condition due to improper synchronization in the Windows Function Discovery Service (fdwsd.dll) enables a locally authenticated attacker to escalate privileges. The issue is described as a concurrency problem with a shared resource. Affected component: Function Discovery Se...

7CVSS5.6AI score0.00198EPSS
Exploits0References1Affected Software13
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.13 views

Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS5.6AI score0.00198EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.16 views

Microsoft Function Discovery Service (fdwsd.dll) 竞争条件问题漏洞

The Microsoft Function Discovery Service is a background service provided by Microsoft Corporation. There are competition-related vulnerabilities in the Microsoft Function Discovery Service fdwsd.dll. The following products and versions are affected: Windows 11 Version 26H1 for ARM64-based System...

7CVSS5.8AI score0.00198EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.13 views

PT-2026-47879

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description A race condition occurs in the Function Discovery Service fdwsd.dll due to improper synchronization when using a shared resource. This allows an authorized attacker to elevate privileges...

7CVSS5.4AI score0.00198EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:21 p.m.11 views

CVE-2026-41286

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS5.5AI score0.00213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:20 p.m.10 views

CVE-2026-41287

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS5.5AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/08 12:45 a.m.39 views

CVE-2026-8122 Open5GS NSSF message.c ogs_sbi_discovery_option_add_service_names denial of service

A vulnerability was found in Open5GS up to 2.7.7. This affects the function ogssbidiscoveryoptionaddservicenames in the library /lib/sbi/message.c of the component NSSF. The manipulation results in denial of service. The attack may be performed from remote. The exploit has been made public and...

5.3CVSS0.00372EPSS
Exploits1References5
EUVD
EUVD
added 2026/05/06 6:30 p.m.9 views

EUVD-2026-27834

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS5.8AI score0.00213EPSS
Exploits0References2
NVD
NVD
added 2026/05/06 4:16 p.m.12 views

CVE-2026-41286

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/06 3:46 p.m.34 views

CVE-2026-41286 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant B

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS0.00213EPSS
Exploits0References1
CVE
CVE
added 2026/05/06 3:46 p.m.14 views

CVE-2026-41286

The CVE-2026-41286 entry concerns the WatchGuard Agent Discovery Service on Windows. A stack-based buffer overflow in the discovery component is exploitable by an unauthenticated attacker on the same local network, with the practical outcome being a crash of the agent service (Denial of Service)....

7.1CVSS5.8AI score0.00213EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/06 3:46 p.m.5 views

CVE-2026-41286

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS5.8AI score0.00213EPSS
Exploits0References2
Rows per page
Query Builder