Lucene search
K

22189 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/15 8:50 p.m.6 views

CVE-2026-1002

The Vert.x Web static handler component cache can be manipulated to deny the access to static files served by the handler using specifically crafted request URI. The issue comes from an improper implementation of the C. rule of section 5.2.4 of RFC3986 and is fixed in Vert.x Core component used b...

6.9CVSS5.5AI score0.00343EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/01/15 8:50 p.m.4 views

EUVD-2026-2695

The Vert.x Web static handler component cache can be manipulated to deny the access to static files served by the handler using specifically crafted request URI. The issue comes from an improper implementation of the C. rule of section 5.2.4 of RFC3986 and is fixed in Vert.x Core component used b...

6.9CVSS6.2AI score0.00343EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/15 8:50 p.m.7 views

CVE-2026-1002 Eclipse Vert.x Web static handler file access denial

The Vert.x Web static handler component cache can be manipulated to deny the access to static files served by the handler using specifically crafted request URI. The issue comes from an improper implementation of the C. rule of section 5.2.4 of RFC3986 and is fixed in Vert.x Core component used b...

6.9CVSS6.4AI score0.00343EPSS
Exploits1References1
CVE
CVE
added 2026/01/15 8:50 p.m.40 views

CVE-2026-1002

CVE-2026-1002 affects the Vert.x Web static handler cache. The issue stems from an improper implementation of the RFC3986 C-rule (section 5.2.4), enabling an attacker to craft a URI (e.g., bar%2F..%2F) that can cause denial of access to static files served by the handler. Connected evidence indic...

6.9CVSS6.4AI score0.00343EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2026/01/15 4:16 p.m.3 views

CVE-2021-47774

Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload exceeding 256 bytes to overwrite Structured Exception Handler and gain remote code execution through a bind...

9.8CVSS0.00496EPSS
Exploits0References2
NVD
NVD
added 2026/01/15 4:16 p.m.5 views

CVE-2021-47775

YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious payload of 712 bytes with SEH manipulation to trigger a...

8.4CVSS0.00148EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/15 3:52 p.m.5 views

EUVD-2026-2763

YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious payload of 712 bytes with SEH manipulation to trigger a...

8.4CVSS7.3AI score0.00148EPSS
Exploits0References4
CVE
CVE
added 2026/01/15 3:52 p.m.21 views

CVE-2021-47775

CVE-2021-47775 affects YouTube Video Grabber (also called YouTube Downloader) version 1.9.9.1. The issue is a buffer overflow that allows arbitrary code execution by overwriting the Structured Exception Handler (SEH). An attacker can craft a 712-byte payload with SEH manipulation to trigger a bin...

8.4CVSS7.5AI score0.00148EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/15 3:52 p.m.3 views

CVE-2021-47775 YouTube Video Grabber 1.9.9.1 - Buffer Overflow (SEH)

YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious payload of 712 bytes with SEH manipulation to trigger a...

8.4CVSS7.5AI score0.00148EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/15 3:52 p.m.4 views

CVE-2021-47775

YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious payload of 712 bytes with SEH manipulation to trigger a...

8.4CVSS6.4AI score0.00148EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/15 3:52 p.m.2 views

CVE-2021-47774

Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload exceeding 256 bytes to overwrite Structured Exception Handler and gain remote code execution through a bind...

9.8CVSS7.2AI score0.00496EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/15 3:52 p.m.1 views

CVE-2021-47774 Kingdia CD Extractor 3.0.2 - Buffer Overflow (SEH)

Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload exceeding 256 bytes to overwrite Structured Exception Handler and gain remote code execution through a bind...

9.8CVSS8.6AI score0.00496EPSS
Exploits0References2
CVE
CVE
added 2026/01/15 3:52 p.m.11 views

CVE-2021-47774

CVE-2021-47774 affects Kingdia CD Extractor 3.0.2. A buffer overflow in the registration name field allows an attacker to execute arbitrary code by crafting a payload exceeding 256 bytes to overwrite the Structured Exception Handler, enabling remote code execution via a bind shell. This is consis...

9.8CVSS8.6AI score0.00496EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/15 3:52 p.m.4 views

EUVD-2026-2760

Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload exceeding 256 bytes to overwrite Structured Exception Handler and gain remote code execution through a bind...

9.8CVSS8.4AI score0.00496EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.3 views

CVE-2025-67246

A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a lack of access control in the IOCTL handler. This driver exposes a device interface accessible to a normal user and handles attacker-controlled structures containing the lower 4GB of physical addresse...

7.3CVSS5.6AI score0.00151EPSS
Exploits1References3
CVE
CVE
added 2026/01/15 12:0 a.m.13 views

CVE-2025-67246

A local information disclosure in the Ludashi driver (pre-5.1025) due to insufficient access control in the IOCTL handler. The driver exposes a device interface to unprivileged users, accepts attacker-controlled structures containing the lower 4 GB of physical addresses, maps arbitrary physical m...

7.3CVSS5.4AI score0.00151EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.11 views

PT-2026-3133

Name of the Vulnerable Software and Affected Versions Vert.x versions affected versions not specified Description The Vert.x Web static handler component cache can be manipulated to deny access to static files served by the handler using specifically crafted request URIs. This is due to an improp...

6.9CVSS5.9AI score0.00343EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.8 views

PT-2026-3059

Name of the Vulnerable Software and Affected Versions Ludashi driver versions prior to 5.1025 Description A local information disclosure issue exists in the Ludashi driver due to insufficient access control within the IOCTL handler. The driver provides a device interface accessible to standard...

7.3CVSS5.6AI score0.00151EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.5 views

PT-2026-3049

Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload exceeding 256 bytes to overwrite Structured Exception Handler and gain remote code execution through a bind...

9.8CVSS8.9AI score0.00496EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.6 views

EulerOS 2.0 SP10 : udisks2 (EulerOS-SA-2026-1059)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the...

8.5CVSS5.9AI score0.0065EPSS
Exploits1References2
Rows per page
Query Builder