Lucene search
+L

10313 matches found

EUVD
EUVD
added yesterday9 views

EUVD-2026-45068

Out-of-bounds write vulnerability in Legion of the Bouncy Castle Inc. BC-LTS bcprov-lts8on on ARM allows Overflow Buffers. This vulnerability is associated with program files https://github.Com/bcgit/bc-lts-java/blob/main/nativec/arm/sha/shake.C,...

5.6CVSS6.1AI score0.001EPSS
Exploits0References2
Cvelist
Cvelist
added 2 days ago31 views

CVE-2026-15997 Native ARM SHA3 / SHAKE `restoreFullState` fails to detect size_t underflow in a crafted encoded state

Out-of-bounds write vulnerability in Legion of the Bouncy Castle Inc. BC-LTS bcprov-lts8on on ARM allows Overflow Buffers. This vulnerability is associated with program files https://github.Com/bcgit/bc-lts-java/blob/main/nativec/arm/sha/shake.C,...

5.6CVSS0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago36 views

CVE-2026-15921 nvm path traversal via a malicious mirror's LTS codename writes outside the alias directory

Node Version Manager nvm is a POSIX-compliant shell function for managing multiple node.js versions. In versions 0.32.1 through 0.40.5, nvm ls-remote and other commands that refresh remote LTS aliases, such as nvm install --lts parse the node.js mirror's index.tab and use each release's LTS...

3.1CVSS0.00225EPSS
Exploits0References2
OSV
OSV
added 3 days ago3 views

CVE-2026-15921 nvm path traversal via a malicious mirror's LTS codename writes outside the alias directory

Node Version Manager nvm is a POSIX-compliant shell function for managing multiple node.js versions. In versions 0.32.1 through 0.40.5, nvm ls-remote and other commands that refresh remote LTS aliases, such as nvm install --lts parse the node.js mirror's index.tab and use each release's LTS...

2.1CVSS6.4AI score0.00225EPSS
Exploits0References5
CVE
CVE
added 3 days ago11 views

CVE-2026-15921

The CVE-2026-15921 issue affects Node Version Manager (nvm) up to v0.40.5, where nvm ls-remote and similar commands parse the mirror index.tab and use each LTS codename as an alias filename without validation. A malicious mirror can return path-traversal codenames (e.g., ../../../.bashrc), causin...

3.1CVSS6.4AI score0.00225EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 6 days ago6 views

Debian dla-4677 : chromium - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4677 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4677-1 [email protected]...

9.6CVSS6.3AI score0.00306EPSS
Exploits0References56
OSV
OSV
added 2026/07/10 3:5 p.m.4 views

CVE-2026-54149 MaxKB MCP tool import validation bypass allows post-authentication remote code execution

MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import functionality in apps/tools/serializers/tool.py and MCP referencing mode in apps/application/chatpipeline/step/chatstep/impl/basechatstep.py do not consistently validate MCP transport type, allowing an...

8.8CVSS6.2AI score0.00384EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/07/10 12:0 a.m.11 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Go Cryptography vulnerabilities (USN-8519-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8519-1 advisory. Jakub Ciolek and Nicola Murino discovered that Go Cryptography incorrectly handled SSH agent responses. A...

7.5CVSS6.8AI score0.00868EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2026/07/09 2:13 p.m.6 views

USN-8523-1: libsoup vulnerabilities

Eric Su and Samuel Dainard discovered that libsoup incorrectly handled content with zero-length resources. An attacker could possibly use this issue to trigger a buffer over-read, resulting in information disclosure or a denial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04...

9.1CVSS6.8AI score0.0042EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.11 views

Ubuntu 26.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-8507-1)

"The remote Ubuntu 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8507-1 advisory. It was discovered that some AMD processors did not properly clear data in the floating point divider unit during speculative execution. A local attacker...

9.8CVSS7.1AI score0.00675EPSS
Exploits35References237
Debian
Debian
added 2026/07/05 6:24 p.m.11 views

[SECURITY] [DLA 4671-1] linux-6.1 security update

Debian LTS Advisory DLA-4671-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings July 05, 2026 https://wiki.debian.org/LTS Package : linux-6.1 Version : 6.1.176-1deb11u1 CVE ID : CVE-2023-53292 CVE-2023-53989 CVE-2023-54125 CVE-2023-54271 CVE-2023-54322 CVE-2024-27012...

9.8CVSS7AI score0.00742EPSS
Exploits46
Debian
Debian
added 2026/07/04 2:23 p.m.8 views

[SECURITY] [DLA 4669-1] php8.2 security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4669-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta July 04, 2026 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

5.6CVSS6.1AI score0.00306EPSS
Exploits0
EUVD
EUVD
added 2026/07/03 2:13 p.m.9 views

EUVD-2026-41551

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper Neutralization of Special Elements used in an OS Command 'OS...

7.2CVSS6.1AI score0.01216EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/03 12:46 p.m.9 views

EUVD-2026-41538

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of uninitialized resource vulnerability. A low privileged attacker wi...

3.3CVSS5.9AI score0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/03 12:0 a.m.21 views

PT-2026-55536

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7 Dell PowerProtect Data Domain versions 8.6.1.0 through 8.6.1.10 Dell PowerProtect Data Domain versions 8.3.1.0 through 8.3.1.30 Dell PowerProtect Data Domain versions 7.13.1.0 through...

3.3CVSS5.9AI score0.00095EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/07/03 12:0 a.m.18 views

PT-2026-55533

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7 Dell PowerProtect Data Domain LTS2026 release versions 8.6.1.0 through 8.6.1.10 Dell PowerProtect Data Domain LTS2025 release versions 8.3.1.0 through 8.3.1.30 Dell PowerProtect Data...

4.2CVSS6AI score0.00116EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.14 views

Debian dla-4665 : affs-modules-6.1.0-48-4kc-malta-di - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4665 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4665-1 [email protected]...

9.8CVSS7AI score0.00742EPSS
Exploits46References994
Positive Technologies
Positive Technologies
added 2026/07/03 12:0 a.m.16 views

PT-2026-55546

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7 Dell PowerProtect Data Domain LTS2026 release versions 8.6.1.0 through 8.6.1.10 Dell PowerProtect Data Domain LTS2025 release versions 8.3.1.0 through 8.3.1.30 Dell PowerProtect Data...

7.2CVSS6.2AI score0.01096EPSS
Exploits0References8
Debian
Debian
added 2026/07/01 5:44 p.m.8 views

[SECURITY] [DLA 4662-1] jq security update

Debian LTS Advisory DLA-4662-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson July 01, 2026 https://wiki.debian.org/LTS Package : jq Version : 1.6-2.1+deb12u2 CVE ID : CVE-2026-32316 CVE-2026-33947 CVE-2026-33948 CVE-2026-39956 CVE-2026-39979 CVE-2026-40164...

8.2CVSS6AI score0.00559EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

Debian dla-4660 : libnginx-mod-http-auth-pam - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4660 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4660-1 [email protected]...

9.2CVSS6.7AI score0.03552EPSS
Exploits1References6
Rows per page
Query Builder