Lucene search
K

226 matches found

NVD
NVD
added last week8 views

CVE-2026-40208

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame...

3.7CVSS0.00285EPSS
Exploits0References1
EUVD
EUVD
added last week5 views

EUVD-2026-39347

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame...

3.7CVSS5.9AI score0.00285EPSS
Exploits0References1
CVE
CVE
added last week19 views

CVE-2026-40208

CVE-2026-40208 concerns DoH3 servers handling DoH3 GET queries with an invalid DATA frame, potentially delaying processing and causing a denial of service. The available records state the impact as availability loss (LOW) with a CVSS 3.1 base score of 3.7, network-exposed and requiring no privile...

3.7CVSS5.9AI score0.00285EPSS
Exploits0References1
Debian CVE
Debian CVE
added last week6 views

CVE-2026-40208

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame...

3.7CVSS5.9AI score0.00285EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: Fixed a kernel panic that occurs when the host sends an invalid H2C PDU length. If the host sends an H2CData command with an invalid DATAL value, the kernel may crash in the nvmettcpbuildpduiovec function. The...

5.5CVSS5.7AI score0.00228EPSS
Exploits0References2
CVE
CVE
added 2026/06/01 12:0 a.m.18 views

CVE-2026-37229

CVE-2026-37229 affects FlexRIC v2.0.0. A reachable assertion in e2ap_create_pdu() is triggered when ASN.1 PER decoding fails, allowing a remote unauthenticated attacker to send a non-PER byte sequence (e.g., 0x00) over SCTP to the near-RT RIC at port 36421 or iApp at port 36422 to crash the proce...

7.5CVSS5.8AI score0.00624EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 2:41 a.m.9 views

CVE-2026-0428

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRVSOCCMDIDSRIOVCOPYVFCHIPLETREGS to write invalid data to a remote Die, potentially resulting in unexpected behavior...

1.8CVSS5.8AI score0.00101EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.16 views

PT-2026-41259

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV SOC CMD ID SRIOV COPY VF CHIPLET REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior...

1.8CVSS5.8AI score0.00101EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/25 10:54 a.m.8 views

CVE-2026-33611

A flaw was found in PowerDNS. An operator with access to the REST API can introduce invalid HTTPS or SVCB record data, which can lead to corruption of the LMDB database. This can result in a denial of service due to data integrity issues. Mitigation To mitigate this issue, restrict access to the...

6.5CVSS5.4AI score0.00423EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/22 2:1 p.m.4 views

CVE-2026-33611

An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn cause LMDB database corruption, if using the LMDB backend...

6.5CVSS5.8AI score0.00423EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/17 12:5 p.m.5 views

CLSA-2026-1776427525 golang: Fix of 3 CVEs

CVE-2025-61723: fix non-linear processing time when parsing invalid PEM inputs that could lead to denial of service - CVE-2025-58187: fix quadratic complexity when checking name constraints in crypto/x509 certificate validation - CVE-2025-58188: fix panic when validating certificates with DSA...

7.5CVSS5.8AI score0.00626EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 7:33 a.m.29 views

CVE-2026-31405 media: dvb-net: fix OOB access in ULE extension header tables

In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ulemandatoryexthandlers and uleoptionalexthandlers tables in handleoneuleextension are declared with 255 elements valid indices 0-254, but the index htype is deriv...

9.8CVSS0.0055EPSS
Exploits0References8
NVD
NVD
added 2026/03/25 11:16 a.m.4 views

CVE-2026-23334

In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the data as valid...

5.5CVSS0.00122EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23334

In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the data as valid...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.21 views

CVE-2026-23334 can: usb: f81604: handle short interrupt urb messages properly

In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the data as valid...

0.00122EPSS
Exploits0References5
OSV
OSV
added 2026/03/18 11:16 a.m.6 views

UBUNTU-CVE-2025-71267

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTRLIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite loop when an...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References11
OSV
OSV
added 2026/02/24 3:16 a.m.6 views

DEBIAN-CVE-2026-26066

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with IPTCTEXT. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

7.5CVSS7.7AI score0.00327EPSS
Exploits0References1
Snyk
Snyk
added 2026/02/24 1:52 a.m.5 views

Infinite loop

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

7.5CVSS6AI score0.00327EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:52 a.m.6 views

Infinite loop

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

7.5CVSS6AI score0.00327EPSS
Exploits0References2
NVD
NVD
added 2026/01/28 12:15 p.m.9 views

CVE-2025-59895

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a remote denial-of-service DoS vulnerability in the configuration restore functionality. The issue is due to insufficient validation of user-supplied data during this process. An attacker could send malicious reques...

8.2CVSS0.00367EPSS
Exploits0References1
Rows per page
Query Builder