Lucene search
K

74 matches found

NVD
NVD
added 6 days ago7 views

CVE-2026-40084

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal through the Report formatfile Parameter, causing arbitrary file read. This vulnerability occurs in two stages. In the first stage stored injection, lib/htmlreports.php at...

6.5CVSS0.00324EPSS
Exploits1References2
Debian CVE
Debian CVE
added 6 days ago5 views

CVE-2026-40084

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal through the Report formatfile Parameter, causing arbitrary file read. This vulnerability occurs in two stages. In the first stage stored injection, lib/htmlreports.php at...

6.5CVSS5.9AI score0.00324EPSS
Exploits1
Positive Technologies
Positive Technologies
added 6 days ago8 views

PT-2026-52627

Name of the Vulnerable Software and Affected Versions Cacti versions prior to 1.2.31 Description Path Traversal allows arbitrary file read through the Report format file parameter. The issue occurs in two stages: first, lib/html reports.php stores the format file value into the database without...

6.5CVSS5.9AI score0.00324EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.10 views

Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

...

7.8CVSS5.4AI score0.00298EPSS
Exploits0
OSV
OSV
added 2026/05/22 10:16 p.m.7 views

UBUNTU-CVE-2026-41071

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a crafted HEIF sequence file where the saiz box declares more samples than actually exist in the track's chunk table causes a heap-buffer-overflow out-of-bounds read in the SampleAuxInfoReader constructor. T...

8.1CVSS5.7AI score0.00302EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/04/22 7:54 a.m.5 views

CVE-2026-6845

A flaw was found in binutils, specifically within the readelf utility. This vulnerability allows a local attacker to cause a Denial of Service DoS by tricking a user into processing a specially crafted Executable and Linkable Format ELF file. The exploitation of this flaw can lead to the system...

5CVSS5.7AI score0.00126EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/04/06 9:40 p.m.7 views

USN-8145-3: Linux kernel (GCP) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Cryptographic API; - UDF file system; - NFC subsystem; - Network traffic control;...

7.8CVSS6.7AI score0.0024EPSS
Exploits0
Snyk
Snyk
added 2026/02/24 1:29 a.m.4 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.6CVSS6AI score0.00319EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-43891)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43891 advisory. - In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor...

4.7CVSS6.7AI score0.00225EPSS
Exploits0References2
Mageia
Mageia
added 2025/11/05 10:49 p.m.13 views

Updated binutils packages fix security vulnerabilities

GNU Binutils format.c bfdsetformat memory corruption. CVE-2025-1153 GNU Binutils ld elflink.c bfdelfgcmarkrsec heap-based overflow. CVE-2025-1176 GNU Binutils ld libbfd.c bfdputl64 memory corruption. CVE-2025-1178 GNU Binutils ld elflink.c bfdelfgcmarkrsec memory corruption. CVE-2025-1181 GNU...

6.3CVSS7AI score0.01252EPSS
Exploits5References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-28804

Malware in sbrugna...

7.8CVSS7.7AI score0.00862EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10692

Malware in sbrugna...

8.8CVSS8.6AI score0.02572EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-8069

Malware in sbrugna...

7.1CVSS6.8AI score0.0135EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-27807

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01523EPSS
Exploits1References2
NVD
NVD
added 2025/09/24 2:15 p.m.3 views

CVE-2025-23248

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability may lead to a partial denial of service...

3.3CVSS0.00146EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 6:48 p.m.3 views

CVE-2021-40633

A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file...

8.8CVSS6.8AI score0.01523EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/15 12:0 a.m.2 views

Autodesk Revit 缓冲区错误漏洞

Autodesk Revit is a suite of building information modeling software from Autodesk, Inc. in the United States. A security vulnerability exists in Autodesk Revit that originates from a malicious PDF file that causes memory corruption, which could lead to the execution of arbitrary code...

7.8CVSS6.7AI score0.00227EPSS
Exploits0References4
OSV
OSV
added 2024/12/17 4:15 p.m.4 views

CVE-2024-12191

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00262EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/10/15 7:0 a.m.3 views

tracing: Have format file honor EVENT_FILE_FL_FREED

...

4.7CVSS6.7AI score0.00225EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/08/27 2:24 a.m.2 views

SUSE CVE-2024-43891

In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor EVENTFILEFLFREED When eventfs was introduced, special care had to be done to coordinate the freeing of the file meta data with the files that are exposed to user space. The file meta data would hav...

4.7CVSS7.6AI score0.00225EPSS
Exploits0References3
Rows per page
Query Builder