Lucene search
K

66515 matches found

Kaspersky
Kaspersky
added 2026/05/14 12:0 a.m.18 views

KLA91052 Multiple vulnerabilities in PostgreSQL

Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in refint can be exploited to...

8.8CVSS6.7AI score0.00668EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.13 views

simdjson 输入验证错误漏洞

Simdjson is an open-source, high-performance JSON parsing library developed by Simdjson. Versions of Simdjson prior to 4.6.4 contained a vulnerability related to input validation errors. This vulnerability stemmed from the stringbuilder::escapeandAppend function, which had an integer overflow whe...

6.9CVSS6AI score0.00279EPSS
Exploits0References2
PostrgeSql
PostrgeSql
added 2026/05/14 12:0 a.m.12 views

Vulnerability in core server (CVE-2026-6473)

PostgreSQL server undersizes allocations, via integer wraparound Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.11 views

PostgreSQL 输入验证错误漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Versions of PostgreSQL prior to 18.4, 17.10, 16.14, 15.18, and...

8.8CVSS6.1AI score0.00668EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.9 views

PT-2026-40918

Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 18.4 PostgreSQL versions prior to 17.10 PostgreSQL versions prior to 16.14 PostgreSQL versions prior to 15.18 PostgreSQL versions prior to 14.23 Description Integer wraparound in multiple server features allows an...

8.8CVSS6.3AI score0.00668EPSS
Exploits0References138
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.16 views

PT-2026-41032

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixel encode highcolor's allocation size calculation can lead to a heap buffer overflow. The public sixel encode entry point validates only that width and height are greater...

7.4CVSS6.3AI score0.00104EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/13 8:23 p.m.9 views

CVE-2026-42896

Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00284EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.9 views

CVE-2026-40397

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS6AI score0.00273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.8 views

CVE-2026-35415

Integer overflow or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00332EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.8 views

CVE-2026-34330

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00304EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/13 6:4 p.m.16 views

CVE-2026-42580

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk size parser silently overflows int, enabling request smuggling attacks. This vulnerability is fixed in 4.2.13.Final and 4.1.133.Final...

6.5CVSS5.8AI score0.00364EPSS
Exploits1
OSV
OSV
added 2026/05/13 5:55 p.m.4 views

OPENSUSE-SU-2026:20726-1 Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: Changes in ffmpeg-4: - CVE-2026-40962: Fixed inadequate CENC subsample bounds checks that could lead to an integer overflow bsc1262237...

9.8CVSS5.9AI score0.00134EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/13 4:0 p.m.7 views

SUSE CVE-2017-12425

An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the...

7.5CVSS7.2AI score0.02416EPSS
Exploits0References3
NCSC
NCSC
added 2026/05/13 9:31 a.m.32 views

vulnerabilities handled in Adobe After Effects

Adobe has identified several vulnerabilities in Adobe After Effects, particularly in versions 26.0, 25.6.4, and earlier versions. These vulnerabilities reside in the way Adobe After Effects processes certain files. There are issues with stack-based buffer overflows, heap-based buffer overflows,...

7.8CVSS6.4AI score0.00299EPSS
Exploits0References1
OSV
OSV
added 2026/05/13 8:55 a.m.6 views

CLSA-2026-1778247114 libssh2: Fix of CVE-2026-7598

CVE-2026-7598: fix integer overflow in userauthpassword CVE-2026-7598...

9.1CVSS7.2AI score0.00466EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/13 8:1 a.m.8 views

jq: Signed-int overflow in `stack_reallocate` (jq VM stack)

...

7.3CVSS5.8AI score0.00142EPSS
Exploits1
OSV
OSV
added 2026/05/13 6:0 a.m.7 views

RLSA-2026:16055 Important: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 For more details about the security issues,...

7.8CVSS6.2AI score0.00553EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/05/13 6:0 a.m.16 views

libtiff security update

An update is available for libtiff. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff packages contain a library of functions for manipulating Tagged...

7.8CVSS6.2AI score0.00553EPSS
Exploits0
OSV
OSV
added 2026/05/13 6:0 a.m.10 views

RLSA-2026:15953 Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: GLib: Buffer underflow...

6.5CVSS6.6AI score0.00754EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/13 6:0 a.m.10 views

krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

A flaw was found in MIT Kerberos 5 krb5. An unauthenticated remote attacker can exploit an integer underflow and an out-of-bounds read vulnerability by calling gssacceptseccontext on a system with a NegoEx mechanism registered. This can lead to the process terminating, resulting in a Denial of...

5.9CVSS5.8AI score0.0046EPSS
Exploits0References7
Rows per page
Query Builder