Lucene search
K

475 matches found

EUVD
EUVD
added 2025/12/12 9:31 p.m.5 views

EUVD-2025-203108

A vulnerability was detected in ggml-org whisper.cpp up to 1.8.2. Affected is the function readaudiodata of the file /whisper.cpp/examples/common-whisper.cpp. The manipulation results in use after free. The attack requires a local approach. The exploit is now public and may be used. The project w...

5.3CVSS6AI score0.00117EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-20807

Malware in sbrugna...

7.5CVSS7.5AI score0.0041EPSS
Exploits0References2
Circl
Circl
added 2025/07/09 6:39 p.m.11 views

CVE-2025-53671

creationtimestamp| type| source ---|---|--- 2025-07-09 18:39:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltkhm5rk7i25...

6.5CVSS6.6AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2025/07/01 10:39 a.m.3 views

CGA-4394-XHFC-XWV2

Bulletin has no description...

6.8CVSS7AI score0.0056EPSS
Exploits0
Circl
Circl
added 2025/06/27 7:35 p.m.12 views

CVE-2024-12143

creationtimestamp| type| source ---|---|--- 2025-06-27 19:35:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsmf5b5apl2m...

9.8CVSS6.6AI score0.00351EPSS
Exploits0References1
Circl
Circl
added 2025/06/03 3:49 p.m.13 views

CVE-2025-43924

creationtimestamp| type| source ---|---|--- 2025-06-03 15:49:40+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqpndniq7pj2...

6.1CVSS7AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 1:59 p.m.7 views

GHSA-8X27-JWJR-8545 SQL injection in ADOdb PostgreSQL driver pg_insert_id() method

Improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and calls pginsertid with user-supplied data. Note that the indicated Severity corresponds to a worst-case usage scenario. Impact PostgreSQL...

10CVSS7.9AI score0.00664EPSS
Exploits0References7
Circl
Circl
added 2024/12/13 2:59 p.m.5 views

CVE-2022-46807

creationtimestamp| type| source ---|---|--- 2024-12-13 14:59:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113646105718672385...

4.3CVSS6.9AI score0.00512EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2023/03/20 9:26 p.m.37 views

kaml has potential denial of service while parsing input with anchors and aliases

Impact Applications that use kaml to parse untrusted input containing anchors and aliases may consume excessive memory and crash. Patches Version 0.53.0 and later default to refusing to parse YAML documents containing anchors and aliases. Workarounds None. References Wikipedia has an explanation ...

7.5CVSS7.3AI score0.00974EPSS
Exploits0References5Affected Software1
RustSec
RustSec
added 2023/01/11 12:0 p.m.14 views

`tokio::io::ReadHalf<T>::unsplit` is Unsound

tokio::io::ReadHalf::unsplit can violate the Pin contract The soundness issue is described in the tokio/issues5372 Specific set of conditions needed to trigger an issue a !Unpin type in ReadHalf is unusual, combined with the difficulty of making any arbitrary use-after-free exploitable in Rust...

1.6AI score
Exploits0Affected Software1
OSV
OSV
added 2023/01/01 12:0 a.m.17 views

ASB-A-250627529

Bulletin has no description...

8.2CVSS7.2AI score0.00414EPSS
Exploits0References2
OSV
OSV
added 2022/01/27 3:23 p.m.20 views

GHSA-65MJ-7C86-79JF Authentication Bypass in ADOdb/ADOdb

Impact An attacker can inject values into a PostgreSQL connection string by providing a parameter surrounded by single quotes. Depending on how the library is used in the client software, this may allow an attacker to bypass the login process, gain access to the server's IP address, etc. Patches...

9.1CVSS9.1AI score0.0217EPSS
Exploits1References9
OSV
OSV
added 2022/01/06 10:48 p.m.33 views

GHSA-X9R5-JXVQ-4387 jquery.terminal self XSS on user input

Impact This is low impact and limited XSS, because code for XSS payload is always visible, but attacker can use other techniques to hide the code the victim sees. Also if the application use execHash option and execute code from URL the attacker can use this URL to execute his code. The scope is...

3.7CVSS5.5AI score0.01037EPSS
Exploits1References6
ossfuzz
ossfuzz
added 2019/05/28 1:30 a.m.16 views

envoy/h1_capture_direct_response_fuzz_test: Crash in Envoy::TestUtility::findCounter

Detailed report: https://oss-fuzz.com/testcase?key=5756178220449792 Project: envoy Fuzzer: libFuzzerenvoyh1capturedirectresponsefuzztest Fuzz target binary: h1capturedirectresponsefuzztest Job Type: libfuzzerasanenvoy Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x7f55425a59b0 Crash...

6.7AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2017/12/11 5:49 a.m.18 views

llvm/clang-fuzzer: Stack-buffer-overflow in clang::expandUCNs

Project: https://github.com/llvm/llvm-project.git Detailed report: https://oss-fuzz.com/testcase?key=5041559499177984 Project: llvm Fuzzer: libFuzzerllvmclang-fuzzer Fuzz target binary: clang-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Stack-buffer-overflow READ 1 Crash...

6.8AI score
Exploits0Affected Software1
Rows per page
Query Builder