Lucene search
K

22859 matches found

Circl
Circl
added 2026/06/25 6:1 p.m.8 views

CVE-2026-55699

creationtimestamp| type| source ---|---|--- 2026-06-25 18:01:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp4z57mqql2z 2026-06-27 00:35:02+00:00| published-proof-of-concept| https://github.com/pnpm/pnpm/security/advisories/GHSA-4gxm-v5v7-fqc4 2026-06-29 23:04:39+00:00| seen|...

6.5CVSS5.8AI score0.00286EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/25 2:37 p.m.3 views

Security Bulletin: IBM® Db2® could disclose sensitive information to an authenticated user from the monitoring and event tables (CVE-2025-36372)

Summary IBM® Db2® could disclose sensitive information to an authenticated user from the monitoring and event tables. CVE-2025-36372 Vulnerability Details CVEID:CVE-2025-36372 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could disclose sensitive information to an...

6.5CVSS5.8AI score0.00303EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/25 9:16 a.m.8 views

CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

0.00175EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 9:16 a.m.9 views

CVE-2026-53245

In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrppduparsevecattr In mrppduparsevecattr, vector attribute events are encoded three per byte and valen tracks the number of events left to process. The parser decrements valen after...

0.00184EPSS
Exploits0References8
OSV
OSV
added 2026/06/25 9:16 a.m.2 views

UBUNTU-CVE-2026-53245

In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrppduparsevecattr In mrppduparsevecattr, vector attribute events are encoded three per byte and valen tracks the number of events left to process. The parser decrements valen after...

5.3CVSS5.7AI score0.00184EPSS
Exploits0References11
OSV
OSV
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

4.8CVSS5.7AI score0.00175EPSS
Exploits0References7
CVE
CVE
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53241

CVE-2026-53241 concerns the Linux kernel ALSA: seq (dummy) port handling of UMP events. The issue arises when a UMP event is copied into a stack temporary and then dispatched; the temporary storage is legacy-sized, while the UMP packet is larger, leading to a read past the end of the temporary. T...

5.8AI score0.00175EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:39 a.m.5 views

CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.8AI score0.00175EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.5 views

CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.7AI score0.00175EPSS
Exploits0
Circl
Circl
added 2026/06/25 6:7 a.m.7 views

CVE-2020-11105

creationtimestamp| type| source ---|---|--- 2026-06-25 06:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mp3ranflhb2a...

9.8CVSS7.3AI score0.01977EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/25 4:48 a.m.37 views

CVE-2026-13311 shell-quote parse() is quadratic in token count, enabling denial of service

shell-quote prior to 1.8.5 finalizes parsed tokens in parse using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a result parse runs in On^2 time relative to the number of input tokens. An attacker who can supply an...

8.7CVSS0.0036EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/25 4:48 a.m.5 views

EUVD-2026-39180

shell-quote prior to 1.8.5 finalizes parsed tokens in parse using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a result parse runs in On^2 time relative to the number of input tokens. An attacker who can supply an...

8.7CVSS6.3AI score0.0036EPSS
Exploits0References2
Circl
Circl
added 2026/06/25 12:1 a.m.4 views

GHSA-PJJP-65R7-PPGM

creationtimestamp| type| source ---|---|--- 2026-06-25 00:01:29+00:00| seen| https://bsky.app/profile/slackers.it/post/3mp34su7fvx26...

5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.6 views

PT-2026-52576

Name of the Vulnerable Software and Affected Versions Bitwarden Server versions prior to 2026.5.0 Description An issue exists in the IntegrationTemplateProcessor.ReplaceTokens function where user-controlled values are substituted into event-integration templates without proper JSON encoding. An...

5CVSS5.9AI score0.00262EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.11 views

RockyLinux 9 : kernel (RLSA-2026:27789)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:27789 advisory. kernel: can: isotp: fix tx.buf use-after-free in isotpsendmsg CVE-2026-31474 kernel: mptcp: fix slab-use-after-free in inetlookupestablished...

9.8CVSS7.1AI score0.004EPSS
Exploits9References35
Circl
Circl
added 2026/06/24 10:58 p.m.6 views

CVE-2026-33235

creationtimestamp| type| source ---|---|--- 2026-06-24 22:58:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp2zbqsyw22g...

7.7CVSS5.8AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2026/06/24 10:16 p.m.9 views

CVE-2026-52794

Sentry is an error tracking and performance monitoring tool. From 24.4.0 until 26.5.2, a Regular Expression Denial of Service ReDoS vulnerability exists in Sentry's event ingestion pipeline, where a regex applied to attacker-controlled fields on incoming events can be made to consume...

7.5CVSS0.00267EPSS
Exploits0References2
Circl
Circl
added 2026/06/24 9:38 p.m.6 views

CVE-2026-48721

creationtimestamp| type| source ---|---|--- 2026-06-24 21:38:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp2usdhnr627...

8.6CVSS5.8AI score0.00145EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/24 9:26 p.m.19 views

CVE-2026-52794 Sentry: Inefficient Regular Expression Complexity in sentry

Sentry is an error tracking and performance monitoring tool. From 24.4.0 until 26.5.2, a Regular Expression Denial of Service ReDoS vulnerability exists in Sentry's event ingestion pipeline, where a regex applied to attacker-controlled fields on incoming events can be made to consume...

7.5CVSS0.00267EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 9:26 p.m.12 views

CVE-2026-52794

Sentry CVE-2026-52794 describes a ReDoS in the event ingestion pipeline affecting versions from 24.4.0 through 26.5.2, where a regex on attacker-controlled fields can cause excessive CPU time. The flaw has a CVSSv3.1 base score of 7.5 (High) with network attack vector and no privileges required. ...

7.5CVSS5.8AI score0.00267EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder