Lucene search
+L

100 matches found

OSV
OSV
added yesterday4 views

UBUNTU-CVE-2026-61869

ImageMagick before 7.1.2-26 and 6.9.13-51 contains a memory leak in th...

2.9CVSS6.1AI score0.00102EPSS
Exploits0References3
OSV
OSV
added 2 days ago4 views

CVE-2026-61863 ImageMagick before 7.1.2-26 Memory Leak in TIFF Encoder

ImageMagick before 7.1.2-26 and 6.x before 6.9.13-51 contains a memory leak in the TIFF encoder that occurs when a temporary file cannot be created, resulting in a small memory leak...

2.1CVSS6.1AI score0.00102EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/07/03 3:2 a.m.6 views

SUSE CVE-2026-55577

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when processing a crafted image. This issue has been fixed in...

5.9CVSS6.1AI score0.00226EPSS
Exploits0References3
NVD
NVD
added 2026/07/01 7:16 p.m.7 views

CVE-2026-53467

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, the MNG decoder contains a possible heap information disclosure vulnerability because part of the pixels are left unchanged. This issue has been fixed in versio...

5.3CVSS0.00197EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/06/12 1:48 a.m.10 views

CVE-2026-11651 vulnerabilities

Vulnerabilities for packages: chromium...

9.6CVSS5.4AI score0.00337EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.16 views

PT-2026-46346

Unauthenticated Local File Inclusion in Wanium = 1.9.8 versions...

8.1CVSS5.2AI score0.00435EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.30 views

PT-2026-46326

Unauthenticated Local File Inclusion in Raider Spirit = 1.1.2 versions...

8.1CVSS5.2AI score0.00435EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/19 12:30 p.m.10 views

CVE-2026-8973

Memory safety bugs present in Firefox 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

8.8CVSS6AI score0.00335EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/19 12:29 p.m.9 views

CVE-2026-8953 Sandbox escape due to use-after-free in the Disability Access APIs component

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00532EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/05/19 12:29 p.m.18 views

CVE-2026-8946

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

7.5CVSS5.8AI score0.0056EPSS
Exploits0References6
NVD
NVD
added 2026/02/21 6:17 a.m.22 views

CVE-2026-27211

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

10CVSS0.005EPSS
Exploits1References7
OSV
OSV
added 2026/02/21 5:36 a.m.9 views

CVE-2026-27211 Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

9.1CVSS5.7AI score0.005EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2026/02/21 5:36 a.m.3 views

CVE-2026-27211 Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

9.1CVSS5.5AI score0.005EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/02/21 12:0 a.m.8 views

PT-2026-21357

Name of the Vulnerable Software and Affected Versions Cloud Hypervisor versions 34.0 through 50.0 Description Cloud Hypervisor, a Virtual Machine Monitor for Cloud workloads, has an issue where a malicious guest can potentially access sensitive host files. This occurs when using virtio-block...

10CVSS5.2AI score0.005EPSS
Exploits1References17
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.6 views

PT-2026-1959

Name of the Vulnerable Software and Affected Versions Asseco InfoMedica versions prior to 4.50.1 Asseco InfoMedica versions prior to 5.38.0 Description Asseco InfoMedica stores user passwords in an encoded format within a database. An attacker with access to these encoded passwords can decode the...

5.9CVSS6.5AI score0.00138EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Mozilla Firefox < 51.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 51.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-01 advisory. - A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired...

9.8CVSS7.6AI score0.33199EPSS
Exploits24References25
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.6 views

Malicious code in bitha-51 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 146504a69ebd3f3dc97a4976f2268db27b464079718103ab3a3f9dba2471f7dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.4 views

MAL-2025-165035 Malicious code in rival-poke51 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08ef17468e670783fdd21a1cc3063467cd0fa89df38656a40b026e1d5d5276f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.5 views

ClipBucket SQL注入漏洞

ClipBucket is an open source and freely downloadable PHP script from MacWarrior Open Source. It is used for sharing video sites. A SQL injection vulnerability exists in ClipBucket v5 versions 5.5.2 through 151 and earlier, which originates from a certified administrator with plugin management...

6.5CVSS8.3AI score0.00385EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/10/30 3:22 p.m.7 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.16.51 CNF IBU extras update

An update for ibu components is available for Red Hat OpenShift Container Platform 4.16. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the extra ibu container...

7.1CVSS7.1AI score0.0029EPSS
Exploits0References2
Rows per page
Query Builder