Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/05/07 3:3 p.m.4 views

JLSEC-2026-462

XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...

6.3CVSS6AI score0.00063EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/04/11 12:0 a.m.2 views

CBL Mariner 2.0 Security Update: CBL-Mariner Releases (CVE-2026-34743)

The version of CBL-Mariner Releases installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-34743 advisory. - XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to...

6.3CVSS6AI score0.00063EPSS
Exploits0References1
OSV
OSVadded 2026/04/02 7:21 p.m.2 views

ALPINE-CVE-2026-34743

XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...

5.3CVSS5.8AI score0.00063EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2026/04/02 6:36 p.m.1 views

CVE-2026-34743

XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...

6.3CVSS5.8AI score0.00063EPSS
Exploits0
EUVD
EUVDadded 2026/04/02 6:36 p.m.1 views

EUVD-2026-18505

XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...

6.3CVSS6AI score0.00063EPSS
Exploits0References3
Snyk
Snykadded 2026/04/02 6:36 p.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the lzmaindexdecoder function when processing an empty index, followed by a call to lzmaindexappend. An attacker can cause a buffer overflow and disrupt service availability by providing a specially crafted...

7.4CVSS6.1AI score0.00063EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/04/02 12:0 a.m.3 views

XZ Utils 安全漏洞

XZ Utils is an open-source utility developed by Tukaani. Versions of XZ Utils prior to 5.8.3 contained security vulnerabilities. These vulnerabilities stemmed from abnormal states during the decoding of unrecorded indexes by lzmaindexdecoder, which could lead to insufficient memory allocation...

6.3CVSS6.2AI score0.00063EPSS
Exploits0References4
Rows per page
Query Builder