Lucene search
K

3765 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.5 views

Juniper Junos OS Vulnerability (JSA75734)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA75734 advisory. - An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows a network-based,...

7.5CVSS5.5AI score0.00538EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/26 1:52 a.m.10 views

SUSE CVE-2026-31684

In the Linux kernel, the following vulnerability has been resolved: net: sched: actcsum: validate nested VLAN headers tcfcsumact walks nested VLAN headers directly from skb-data when an skb still carries in-payload VLAN tags. The current code reads vlan-hvlanencapsulatedproto and then pulls...

6.5CVSS5.5AI score0.00117EPSS
Exploits0References19
EUVD
EUVD
added 2026/04/25 9:0 p.m.7 views

EUVD-2026-25674

A vulnerability has been found in Datacom DM4100 1.3.6.1.4.1.3709. Affected by this issue is some unknown functionality of the component VLAN Page. Such manipulation of the argument VLAN Name leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to...

4.8CVSS3.2AI score0.00245EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/24 12:0 a.m.8 views

CVE-2026-32952

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

7.5CVSS5.8AI score0.01027EPSS
Exploits0References1
OSV
OSV
added 2026/04/23 9:21 p.m.6 views

GHSA-PJCQ-XVWQ-HHPJ go-ntlmssp NTLM challenges can panic on malformed payloads

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

5.3CVSS5.8AI score0.01027EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.6 views

SUSE CVE-2026-31506

In the Linux kernel, the following vulnerability has been resolved: net: bcmasp: fix double free of WoL irq We do not need to free wolirq since it was instantiated with devmrequestirq. So devres will free for us...

5.6AI score0.00129EPSS
Exploits0References3
GitLab Advisory Database
GitLab Advisory Database
added 2026/04/23 12:0 a.m.9 views

go-ntlmssp NTLM challenges can panic on malformed payloads

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

7.5CVSS5.8AI score0.01027EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/22 7:45 p.m.7 views

CVE-2026-31506

A flaw was found in the Linux kernel's bcmasp component. This vulnerability involves a double free error in the handling of the Wake-on-LAN WoL interrupt request irq. An attacker could potentially exploit this to cause memory corruption, leading to a denial of service DoS or, in more severe cases...

7.8CVSS6AI score0.00129EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 4:16 p.m.8 views

CVE-2018-25268

LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by 4 bytes of controlled data to crash the application or...

8.6CVSS0.00201EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/22 3:31 p.m.9 views

EUVD-2026-24883

In the Linux kernel, the following vulnerability has been resolved: net: bcmasp: fix double free of WoL irq We do not need to free wolirq since it was instantiated with devmrequestirq. So devres will free for us...

5.6AI score0.00129EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/22 2:57 p.m.6 views

CVE-2018-25268

LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by 4 bytes of controlled data to crash the application or...

8.6CVSS6.2AI score0.00201EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.35 views

CVE-2026-31506 net: bcmasp: fix double free of WoL irq

In the Linux kernel, the following vulnerability has been resolved: net: bcmasp: fix double free of WoL irq We do not need to free wolirq since it was instantiated with devmrequestirq. So devres will free for us...

0.00129EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:54 p.m.13 views

CVE-2026-31506

The CVE-2026-31506 issue concerns the Linux kernel bcmasp component where the Wake-on-LAN (WoL) IRQ handler could be double-freed. The problem stems from handling of the WoL irq; the patch indicates wol_irq does not need explicit freeing because it is allocated with devm_request_irq, and devres h...

7.8CVSS5.6AI score0.00129EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34411

In the Linux kernel, the following vulnerability has been resolved: net: bcmasp: fix double free of WoL irq We do not need to free wol irq since it was instantiated with devm request irq. So devres will free for us...

5.6AI score0.00129EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34337

My last CVE-2026-31077 of China PTZ camera lead to RCE + RTSP video stream over LAN network. The camera uses the app named “CareCamPro” with +1m downloads on Play Store https://t.co/S0T5XS8udh...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31506

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: bcmasp: fix double free of WoL irq We do not need to free wolirq since it was instantiated with devmrequestirq. So devres will free for us. CVE-2026-31506...

7.8CVSS7.1AI score0.00129EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2026/04/21 12:0 a.m.12 views

(0Day) Microsoft Office URI Handler NTLM Response Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose NTLM responses on affected installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

4.3CVSS5.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013013)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013013 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forc...

5.6AI score0.00202EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: freerdp (UTSA-2026-006941)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006941 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN Manager NTLM authentication does not properly abort when...

9.1CVSS7.2AI score0.02674EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/15 5:26 p.m.7 views

EUVD-2026-22991

Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's NTLM hash. The NTLM hash can be obtained by tricking users into cloning a malicious repository, or checking out a malicious branch, that accesses a...

7.4CVSS5.8AI score0.00316EPSS
Exploits0References5
Rows per page
Query Builder