Lucene search
K

7752 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.5 views

RHEL 10 : fontforge (RHSA-2026:8875)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:8875 advisory. FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript ASCII and binary Type 1, some Typ...

8.8CVSS7.5AI score0.00581EPSS
Exploits0References4
OSV
OSV
added 2026/04/17 3:19 p.m.20 views

JLSEC-2026-136

Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required to exploit this...

7.8CVSS7.6AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2026/04/17 1:2 p.m.8 views

OESA-2026-1958 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

7.8CVSS6.2AI score0.00755EPSS
Exploits0References5
OSV
OSV
added 2026/04/17 1:2 p.m.9 views

OESA-2026-1957 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

7.8CVSS6.2AI score0.00755EPSS
Exploits0References5
OSV
OSV
added 2026/04/17 1:2 p.m.10 views

OESA-2026-1956 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

7.8CVSS6.2AI score0.00755EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/17 12:2 p.m.6 views

SUSE CVE-2026-30656

A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2026/04/16 11:21 p.m.10 views

K000160853: Multiple Vim vulnerabilities

Security Advisory Description CVE-2026-28417 Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL e.g., using the scp:// protocol handler, an...

7.8CVSS6.5AI score0.01162EPSS
Exploits0
EUVD
EUVD
added 2026/04/16 3:31 p.m.8 views

EUVD-2026-23245

A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References3
OSV
OSV
added 2026/04/16 3:17 p.m.3 views

DEBIAN-CVE-2026-30656

A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...

7.5CVSS5.3AI score0.00278EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/16 12:0 a.m.8 views

CVE-2026-30656

A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...

5.8AI score0.00278EPSS
Exploits0References2
CVE
CVE
added 2026/04/16 12:0 a.m.20 views

CVE-2026-30656

The CVE-2026-30656 entry affects fio (Flexible I/O Tester) v3.41. A NULL pointer dereference occurs when parsing job files that contain the fdp_pli option; the callback str_fdp_pli_cb() calls strdup() on a NULL input when the option is provided without an argument, causing a segmentation fault an...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: vim (UTSA-2026-007187)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007187 advisory. Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file...

5.5CVSS6.2AI score0.0022EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/04/15 8:16 p.m.6 views

CVE-2026-40918

A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can lead to a denial of service DoS. This occurs due to a stack-based buffer overflow and an out-of-bounds read in the PVR image loader, causing the application to crash. Systems that process untrusted P...

5.5CVSS6AI score0.00196EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/04/15 8:16 p.m.6 views

CVE-2026-40916

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service DoS. By opening a specially crafted TIM image file, the application crashes due to an unconditional overflow when writing to a...

5.5CVSS5.9AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2026/04/15 8:16 p.m.5 views

UBUNTU-CVE-2026-40917

A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the icnsslurp function, occurs when processing specially crafted ICNS image files. An attacker could provide a malicious ICNS file, potentially leading to application crashes or information disclosure on systems that process...

7.1CVSS5.8AI score0.00167EPSS
Exploits0References3
OSV
OSV
added 2026/04/15 8:16 p.m.4 views

UBUNTU-CVE-2026-40916

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service DoS. By opening a specially crafted TIM image file, the application crashes due to an unconditional overflow when writing to a...

5.5CVSS5.9AI score0.0021EPSS
Exploits0References3
OSV
OSV
added 2026/04/15 10:21 a.m.6 views

SUSE-SU-2026:1344-1 Security update for libssh

This update for libssh fixes the following issues: - CVE-2026-3731: denial of service via out-of-bounds read in SFTP extension name handler bsc1259377. - CVE-2026-0964: SCP protocol path traversal in sshscppullrequest bsc1258049. - CVE-2026-0965: possible denial of service when parsing unexpected...

8.2CVSS6.5AI score0.00631EPSS
Exploits0References13
Zero Day Initiative
Zero Day Initiative
added 2026/04/15 12:0 a.m.7 views

NI LabVIEW LVCLASS File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI LabVIEW. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of LVCLASS...

7.8CVSS6.1AI score0.0022EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.8 views

PT-2026-32913

InCopy | Out-of-bounds Read CWE-125 CVE: CVE-2026-27287 PT ID: PT-2026-32913 Vendor: Adobe Product: InCopy CVSS: 7.8 Credits: n/a Description: InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read pas...

7.8CVSS5.9AI score0.00205EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/13 7:23 p.m.4 views

CVE-2026-5493

Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in...

7.8CVSS6.2AI score0.00265EPSS
Exploits0References1
Rows per page
Query Builder