Lucene search
K

3048 matches found

OSV
OSV
added 6 days ago6 views

DEBIAN-CVE-2026-53877

An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. django.contrib.gis.gdal.GDALRaster over-reads its in-memory buffer when constructed from a bytes object, which can disclose adjacent memory or cause service degradation via a potential segmentation fault when the vsibuffer...

6.3CVSS6AI score0.00291EPSS
Exploits0References1
OSV
OSV
added 6 days ago5 views

DEBIAN-CVE-2011-10043

Module::Load versions before 0.22 for Perl allow arbitrary modules outside of @INC to be loaded. Module names starting with "::" could be passed to the load function to specify arbitrary module paths. Attackers able to influence module names passed to load could use that bug to execute arbitrary...

9.8CVSS6.1AI score0.00429EPSS
Exploits0References1
OSV
OSV
added last week5 views

DEBIAN-CVE-2026-55380

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile.open read image dimensions from the GD 2.x header and stored them in self.size without calling Image.decompressionbombcheck, allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This iss...

7.5CVSS6AI score0.00361EPSS
Exploits1References1
OSV
OSV
added last week6 views

DEBIAN-CVE-2026-58203

pydantic-settings provides settings management using Pydantic. From 2.12.0 until 2.14.2, NestedSecretsSettingsSource reads secret values from files in a configured secretsdir. When secretsnestedsubdir=True, a directory entry inside secretsdir that is a symbolic link pointing outside secretsdir is...

5.3CVSS6AI score0.00138EPSS
Exploits0References1
OSV
OSV
added 2026/07/06 4:5 a.m.3 views

SUSE-SU-2026:2760-1 Security update for libnfs

This update for libnfs fixes the following issue - CVE-2026-53689: integer overflow during a connection to a crafted NFS server bsc1268135. Changes for libnfs: - Add libnfs-CVE-2026-53689.patch: ZDR: check the string size for sanity bsc1268135 CVE-2026-53689...

7.1CVSS6AI score0.00192EPSS
Exploits0References3
OSV
OSV
added 2026/07/05 5:19 a.m.16 views

ROOT-OS-UBUNTU-2404-CVE-2025-37901 CVE-2025-37901 in rootio-linux - Patched by Root

Root has patched CVE-2025-37901 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS7.2AI score0.0016EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.16 views

ROOT-OS-DEBIAN-11-CVE-2025-39957 CVE-2025-39957 in rootio-linux - Patched by Root

Root has patched CVE-2025-39957 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

7.8CVSS6.5AI score0.00144EPSS
Exploits0
OSV
OSV
added 2026/07/04 12:17 p.m.7 views

DEBIAN-CVE-2026-53360

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...

6AI score0.00267EPSS
Exploits0References1
OSV
OSV
added 2026/07/03 7:16 a.m.6 views

DEBIAN-CVE-2026-9079

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them...

9.8CVSS6AI score0.01064EPSS
Exploits1References1
OSV
OSV
added 2026/07/03 7:16 a.m.5 views

DEBIAN-CVE-2026-11856

Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...

9.8CVSS6AI score0.01064EPSS
Exploits1References1
OSV
OSV
added 2026/07/02 6:2 a.m.4 views

BELL-CVE-2026-53353

Bulletin has no description...

5.7AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2026/07/02 6:2 a.m.4 views

BELL-CVE-2026-53350

Bulletin has no description...

5.7AI score0.00161EPSS
Exploits0References1
OSV
OSV
added 2026/07/02 6:2 a.m.3 views

BELL-CVE-2026-53339

Bulletin has no description...

5.7AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2026/07/02 12:0 a.m.4 views

UBUNTU-CVE-2026-47247

Unknown description...

5.8AI score0.00041EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-27727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations of JNDI functionality, including support for remo...

9.8CVSS7.5AI score0.00812EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-57204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.13.3, a maliciously crafted PDF can cause DoS. An attacker who uses this vulnerability can...

6.9CVSS5.9AI score0.00206EPSS
Exploits0References3
OSV
OSV
added 2026/07/01 7:16 p.m.3 views

DEBIAN-CVE-2026-55597

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-26, an incorrect handling of arguments can cause a heap buffer over-write in the JP2 encoder. This issue has been fixed in version7.1.2-26...

5.5CVSS5.9AI score0.00103EPSS
Exploits0References1
Snyk
Snyk
added 2026/07/01 7:0 p.m.5 views

Arbitrary Argument Injection

Overview repomix is an A tool to pack repository contents to single file for AI consumption Affected versions of this package are vulnerable to Arbitrary Argument Injection via unsanitized input to the remoteBranch parameter in the execGitShallowClone process. An attacker can execute arbitrary...

8.8CVSS6.2AI score0.00066EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 7:16 a.m.3 views

UBUNTU-CVE-2025-15666

A security vulnerability has been detected in Open Asset Import Library Assimp up to 5.4.3. Affected by this vulnerability is the function Assimp::SceneCombiner::Copy of the file code/Common/SceneCombiner.cpp of the component Model File Handler. Such manipulation of the argument width/height lead...

5.3CVSS5.9AI score0.00123EPSS
Exploits0References7
OSV
OSV
added 2026/07/01 6:4 a.m.4 views

BELL-CVE-2026-53302

Bulletin has no description...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References1
Rows per page
Query Builder