Lucene search
K

54502 matches found

Cvelist
Cvelist
added 2026/06/28 1:32 a.m.32 views

CVE-2026-58050 libssh2 - Integer Overflow in publickey Subsystem Attribute Allocation

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs sizeoflibssh2publickeyattribute without bounds checking, so on 32-bit platforms the multiplication overflows to an undersized buffer. A malicious S...

8.3CVSS0.00333EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/06/28 12:1 a.m.23 views

pandoc security update

An update is available for pandoc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Pandoc is a markdown/markup conversion tool. The version of pandoc in Rocky...

9.8CVSS7.3AI score0.04192EPSS
Exploits3
CVE
CVE
added 2026/06/27 9:25 a.m.39 views

CVE-2026-49416

The CVE-2026-49416 issue affects FreeBSD vt(4) CONS_HISTORY: the ioctl handler validates the requested history size, but large values trigger an integer overflow in the buffer size calculation, causing a smaller heap allocation and an out-of-bounds write on initialization. This can enable an unpr...

7.8CVSS6AI score0.00107EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:6 a.m.5 views

libexpat before 2.8.2 has an integer overflow in storeAtts.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.4 views

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.6 views

libexpat before 2.8.2 has an integer overflow in XML_ParseBuffer because it lacked a check that was present in XML_Parse.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.3 views

libexpat before 2.8.2 has an integer overflow in addBinding.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:4 a.m.3 views

libexpat before 2.8.2 has an integer overflow in getAttributeId.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/27 2:5 a.m.6 views

SUSE CVE-2026-13281

Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.9AI score0.00177EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.6 views

SUSE SLES15 Security Update : haproxy (SUSE-SU-2026:2652-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2652-1 advisory. This update for haproxy fixes the following issues - CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that...

9.1CVSS6.1AI score0.00431EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.16 views

EulerOS 2.0 SP15 : openjpeg2 (EulerOS-SA-2026-2495)

According to the versions of the openjpeg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library...

4.8CVSS5.2AI score0.00112EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

EulerOS 2.0 SP15 : libtiff (EulerOS-SA-2026-2450)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...

7.8CVSS7.1AI score0.00553EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

EulerOS 2.0 SP15 : openjpeg2 (EulerOS-SA-2026-2454)

According to the versions of the openjpeg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library...

4.8CVSS5.2AI score0.00112EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

SUSE SLES15 Security Update : haproxy (SUSE-SU-2026:2651-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2651-1 advisory. This update for haproxy fixes the following issues - CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that...

9.1CVSS6.1AI score0.00431EPSS
Exploits0References7
OSV
OSV
added 2026/06/26 8:24 p.m.3 views

JLSEC-2026-652 FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common...

FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC Common Encryption subsample data to libavformat/mov.c...

4.9CVSS6.6AI score0.00134EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/26 6:14 p.m.8 views

CVE-2026-53021

A flaw was found in the Linux kernel's SCSI target core. The sbcexecuteunmap function, which handles UNMAP operations, is vulnerable to an integer overflow. This vulnerability occurs because the bounds check for the Logical Block Address LBA and range does not prevent a 64-bit overflow. An attack...

7CVSS5.8AI score0.00176EPSS
Exploits0References4
NVD
NVD
added 2026/06/26 3:16 p.m.9 views

CVE-2026-30041

An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service DoS via supplying a crafted PSD file...

7.5CVSS0.00571EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/26 12:32 a.m.6 views

EUVD-2026-39583

Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

6AI score0.00177EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/26 12:0 a.m.31 views

CVE-2026-30041

An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service DoS via supplying a crafted PSD file...

0.00571EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.7 views

RHEL 9 : postgresql (RHSA-2026:29904)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:29904 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL: Operating system accou...

8.8CVSS7AI score0.00668EPSS
Exploits0References10
Rows per page
Query Builder