Lucene search
K

16 matches found

SUSE CVE
SUSE CVE
added 2026/06/09 2:20 a.m.9 views

SUSE CVE-2026-46295

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Do IRR scan in kvmapicupdateirr even if PIR is empty Fall back to apicfindhighestvector when PID.ON is set but PIR turns out to be empty, to correctly report the highest pending interrupt from the existing IRR. In a...

5.5CVSS5.4AI score0.00112EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2026-46295

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: x86: Do IRR scan in kvmapicupdateirr even if PIR is empty Fall back to apicfindhighestvector when PID.ON is set but PIR turns out to be empty, to correctly...

5.5CVSS6AI score0.00112EPSS
Exploits0References3
NVD
NVD
added 2026/06/08 5:16 p.m.13 views

CVE-2026-46295

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Do IRR scan in kvmapicupdateirr even if PIR is empty Fall back to apicfindhighestvector when PID.ON is set but PIR turns out to be empty, to correctly report the highest pending interrupt from the existing IRR. In a...

5.5CVSS0.00112EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:46 p.m.7 views

CVE-2026-46295

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Do IRR scan in kvmapicupdateirr even if PIR is empty Fall back to apicfindhighestvector when PID.ON is set but PIR turns out to be empty, to correctly report the highest pending interrupt from the existing IRR. In a...

5.3AI score0.00112EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31750

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00496EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/01 12:42 a.m.9 views

CVE-2025-56571

Finance.js v4.1.0 contains a Denial of Service DoS vulnerability via the IRR function’s depth parameter. Improper handling of the recursion/iteration limit can lead to excessive CPU usage, causing application stalls or crashes...

6.9AI score0.00403EPSS
Exploits0References1
OSV
OSV
added 2025/09/30 6:30 p.m.2 views

GHSA-F8R4-MF27-RF7M Finance.js vulnerable to DoS via the IRR function’s depth parameter

Finance.js v4.1.0 contains a Denial of Service DoS vulnerability via the IRR function’s depth parameter. Improper handling of the recursion/iteration limit can lead to excessive CPU usage, causing application stalls or crashes...

7.5CVSS5.9AI score0.00496EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/09/30 6:30 p.m.27 views

Finance.js vulnerable to DoS via the IRR function’s depth parameter

Finance.js v4.1.0 contains a Denial of Service DoS vulnerability via the IRR function’s depth parameter. Improper handling of the recursion/iteration limit can lead to excessive CPU usage, causing application stalls or crashes...

7.5CVSS6.9AI score0.00496EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2025/09/30 4:15 p.m.6 views

CVE-2025-56571

Finance.js v4.1.0 contains a Denial of Service DoS vulnerability via the IRR function’s depth parameter. Improper handling of the recursion/iteration limit can lead to excessive CPU usage, causing application stalls or crashes...

7.5CVSS0.00403EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/30 12:0 a.m.2 views

CVE-2025-56571

Finance.js v4.1.0 contains a Denial of Service DoS vulnerability via the IRR function’s depth parameter. Improper handling of the recursion/iteration limit can lead to excessive CPU usage, causing application stalls or crashes...

6.5AI score0.00403EPSS
Exploits0References3
Prion
Prion
added 2022/03/31 11:15 p.m.14 views

Design/Logic Flaw

Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to mntner objects and database exports. This may have allowed adversaries to retrieve some of these hashes, perfo...

5CVSS7.7AI score0.01366EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/03/31 11:15 p.m.38 views

PYSEC-2022-178

Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to mntner objects and database exports. This may have allowed adversaries to retrieve some of these hashes, perfo...

7.5CVSS2.6AI score0.01366EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/03/31 11:5 p.m.18 views

CVE-2022-24798 Insufficient password hash filtering in some IRRd queries and exports

Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to mntner objects and database exports. This may have allowed adversaries to retrieve some of these hashes, perfo...

7.5CVSS7.9AI score0.01366EPSS
Exploits0References3
CVE
CVE
added 2022/03/31 11:5 p.m.111 views

CVE-2022-24798

CVE-2022-24798 affects Internet Routing Registry daemon (IRRd) v4 where password hashes could be exposed in query responses for mntner objects and database exports. Root cause: insufficient filtering of password hashes in IRRd’s output. Affected products/versions: IRRd 4.2.x (mirrors not affected...

7.5CVSS7.7AI score0.01366EPSS
Exploits0References3Affected Software1
ossfuzz
ossfuzz
added 2020/07/29 6:31 a.m.10 views

assimp:assimp_fuzzer: Heap-buffer-overflow in irr::io::CXMLReaderImpl<char, irr::io::IXMLBase>::parseOpeningXMLElement

Detailed Report: https://oss-fuzz.com/testcase?key=5114691270213632 Project: assimp Fuzzing Engine: libFuzzer Fuzz Target: assimpfuzzer Job Type: libfuzzerasanassimp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x60200000021c Crash State:...

6.8AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2009/01/11 12:0 a.m.34 views

Irrlicht B3D加载器缓冲区溢出漏洞

BUGTRAQ ID: 32907 CVECAN ID: CVE-2008-5876 Irrlicht是用C++编写的开源高效3D引擎。 Irrlicht的B3D加载器中存在缓冲区溢出漏洞。如果用户受骗打开了包含有特制光照网格的.irr文件的话,就可能触发这个溢出,导致拒绝服务或执行任意指令。 Nikolaus Gebhardt Irrlicht 1.5 厂商补丁: Nikolaus Gebhardt ----------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

9.3CVSS6.4AI score0.04093EPSS
Exploits1
Rows per page
Query Builder