Lucene search
K

712 matches found

CNNVD
CNNVD
added 2026/02/18 12:0 a.m.8 views

Alloksoft WMV to AVI MPEG DVD WMV Converter 安全漏洞

Alloksoft WMV to AVI MPEG DVD WMV Converter is a video format conversion tool developed by Alloksoft Corporation. Version 4.6.1217 of Alloksoft WMV to AVI MPEG DVD WMV Converter has a security vulnerability. This vulnerability arises from allowing excessively long license inputs, which may cause...

8.4CVSS5.8AI score0.00373EPSS
Exploits1References4
OSV
OSV
added 2026/02/13 7:28 p.m.12 views

CLSA-2026-1771010890 freerdp: Fix of 5 CVEs

CVE-2026-22859: fix out-of-bounds access due to missing interface index validation in urbdrc channel - CVE-2026-23732: fix out-of-bounds read due to missing input length check in glyph conversion - CVE-2026-23883: fix integer overflow in cursor pixel allocation and surface-to-surface rectangle...

9.8CVSS7.3AI score0.00756EPSS
Exploits5References1
RedHat Linux
RedHat Linux
added 2026/02/12 1:6 a.m.2 views

kernel: Linux kernel: Out-of-bounds write in Bluetooth MGMT can lead to information disclosure and denial of service

A flaw was found in the Linux kernel's Bluetooth management MGMT subsystem. A local attacker could exploit an out-of-bounds OOB write vulnerability in the parseadvmonitorpattern function. This occurs when user-controlled input for the length variable exceeds the buffer's capacity during a copy...

5.8AI score0.00174EPSS
Exploits0References5
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

Huawei HarmonyOS HDC module buffer overflow vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a buffer overflow vulnerability that stems from the HDC module failing to properly validate the length and size of input data,...

6.9CVSS6.1AI score0.00085EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.10 views

Microsoft Hyper-V 缓冲区错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A buffer overflow vulnerability exists in Microsoft Hyper-V. The vulnerability stems from a failure to properly validate the length and size of...

7.3CVSS6AI score0.00548EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.11 views

Microsoft Excel 缓冲区错误漏洞

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A buffer overflow vulnerability exists in Microsoft Excel. The vulnerability stems from the program's failure to properly validate the length and size of input data, which can be exploited by an attacker ...

5.5CVSS6AI score0.00596EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.8 views

Tenda TX9 安全漏洞

The Tenda TX9 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda TX9 goform/SetStaticRouteCfg file, which originates from the parameter list of the function sub42D03C within the file /goform/SetStaticRouteCfg that fails to correctly validate t...

9CVSS7.8AI score0.00733EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.5 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a buffer overflow vulnerability that stems from the HDC module failing to properly validate the length and size of input data,...

6.9CVSS6.1AI score0.00085EPSS
Exploits0References3
OSV
OSV
added 2026/02/05 5:57 p.m.4 views

GHSA-R6V5-FH4H-64XC time vulnerable to stack exhaustion Denial of Service attack

Impact When user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are part of the RFC 2822 format used in a malicious manner. Ordinary,...

6.8CVSS5.5AI score0.00291EPSS
Exploits0References7
EUVD
EUVD
added 2026/02/05 4:13 p.m.6 views

EUVD-2020-31031

UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in the Repeater Host configuration field that allows attackers to crash the application. Attackers can paste an overly long string of 300 characters into the Repeater Host property to trigger an application crash...

7.5CVSS5.4AI score0.00484EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/05 4:13 p.m.4 views

CVE-2020-37127 dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcprelease utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcprelease process by sending a crafted input string longer than 16...

6.9CVSS5.8AI score0.00182EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/05 4:13 p.m.41 views

CVE-2020-37127 dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcprelease utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcprelease process by sending a crafted input string longer than 16...

6.9CVSS0.00182EPSS
Exploits0References3
OSV
OSV
added 2026/02/05 12:0 p.m.5 views

RUSTSEC-2026-0009 Denial of Service via Stack Exhaustion

Impact When user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are part of the RFC 2822 format used in a malicious manner. Ordinary,...

6.8CVSS5.4AI score0.00291EPSS
Exploits0References3
RustSec
RustSec
added 2026/02/05 12:0 p.m.15 views

Denial of Service via Stack Exhaustion

Impact When user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are part of the RFC 2822 format used in a malicious manner. Ordinary,...

6.8CVSS5.4AI score0.00291EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/05 1:22 a.m.6 views

CVE-2025-36094

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 007 could allow an authenticated user to cause a denial of service or corrupt existing data due to the improper validation of input length...

8.1CVSS7.7AI score0.00215EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.9 views

PT-2026-6571

Name of the Vulnerable Software and Affected Versions Dnsmasq-utils version 2.79-1 Description The software contains a buffer overflow in the dhcp release utility. An attacker can cause a denial of service by providing input exceeding 16 characters, leading to a core dump and process termination...

6.9CVSS6AI score0.00182EPSS
Exploits0References12
OSV
OSV
added 2026/02/03 11:16 p.m.4 views

CVE-2025-36094

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 007 could allow an authenticated user to cause a denial of service or corrupt existing data due to the improper validation of input length...

8.1CVSS5.8AI score0.00215EPSS
Exploits0References1
NVD
NVD
added 2026/02/03 11:16 p.m.9 views

CVE-2025-36094

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 007 could allow an authenticated user to cause a denial of service or corrupt existing data due to the improper validation of input length...

8.1CVSS0.00215EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 10:6 p.m.4 views

CVE-2025-36094

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 007 could allow an authenticated user to cause a denial of service or corrupt existing data due to the improper validation of input length...

5.4CVSS7.7AI score0.00215EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/03 10:6 p.m.4 views

CVE-2025-36094 Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for January 2026.

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 007 could allow an authenticated user to cause a denial of service or corrupt existing data due to the improper validation of input length...

5.4CVSS5.4AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder