Lucene search
K

816 matches found

Metasploit
Metasploit
added 2026/02/25 7:0 p.m.367 views

Ollama Model Registry Path Traversal RCE

Ollama before 0.1.34 is vulnerable to a path traversal attack via the model pull mechanism CVE-2024-37032. When pulling a model, the digest field in OCI manifests is not validated, allowing an attacker to inject path traversal sequences to write arbitrary files on the server. This module starts a...

8.8CVSS7.1AI score0.89633EPSS
Exploits4
OSV
OSV
added 2026/02/17 9:3 a.m.9 views

RLSA-2026:2627 Moderate: gcc-toolset-14-binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

5.3CVSS6.3AI score0.00235EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2026/02/17 9:3 a.m.11 views

gcc-toolset-14-binutils security update

An update is available for gcc-toolset-14-binutils. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Binutils is a collection of binary utilities, including ar fo...

7.8CVSS5.7AI score0.00235EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/02/12 9:17 a.m.6 views

Moderate: Red Hat Security Advisory: gcc-toolset-14-binutils security update

An update for gcc-toolset-14-binutils is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References2
OSV
OSV
added 2026/02/12 12:0 a.m.3 views

ALSA-2026:2627 Moderate: gcc-toolset-14-binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

7.8CVSS5.6AI score0.00235EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.7 views

RHEL 8 : gcc-toolset-14-binutils (RHSA-2026:2627)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2627 advisory. Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof...

7.8CVSS6.3AI score0.00235EPSS
Exploits1References5
AlmaLinux
AlmaLinux
added 2026/02/12 12:0 a.m.7 views

Moderate: gcc-toolset-14-binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

7.8CVSS7.8AI score0.00235EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: binutils (UTSA-2026-005341)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005341 advisory. A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The...

7.8CVSS5.4AI score0.00235EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.3 views

Siemens S7-1500 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2025-11413)

A vulnerability was found in GNU Binutils 2.45. Affected is the function elflinkaddobjectsymbols of the file bfd/elflink.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used...

5.5CVSS4.9AI score0.00203EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.6 views

Siemens S7-1500 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2025-11494)

A vulnerability was found in GNU Binutils 2.45. Impacted is the function bfdx86elflatesizesections of the file bfd/elfxx-x86.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. Th...

5.5CVSS4.8AI score0.00198EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.6 views

MiracleLinux 9 : gcc-toolset-15-binutils-2.44-3.el9_7.1 (AXSA:2026-138:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-138:01 advisory. binutils: GNU Binutils Linker heap-based overflow CVE-2025-11083 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/02/03 2:4 p.m.6 views

CVE-2026-22780

A flaw was found in Rizin, a UNIX-like reverse engineering framework. This heap overflow vulnerability can be exploited when a user parses a malicious mach0 file that contains specially crafted entries for the dynamic linker dyld chained segments. Successful exploitation could allow a remote...

6.1CVSS6.4AI score0.00179EPSS
Exploits0References2
NVD
NVD
added 2026/02/02 11:16 p.m.12 views

CVE-2026-22780

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

6.1CVSS0.00179EPSS
Exploits0References6
OSV
OSV
added 2026/02/02 8:52 p.m.6 views

CVE-2026-22780 Rizin has a heap overflow on mach0_chained_fixups.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

4.4CVSS5.6AI score0.00179EPSS
Exploits0References8
CVE
CVE
added 2026/02/02 8:52 p.m.15 views

CVE-2026-22780

CVE-2026-22780 affects Rizin, a UNIX-like reverse engineering framework. Prior to version 0.8.2, parsing a malicious mach0 file with bogus entries for the dyld chained segments could trigger a heap overflow. The issue is fixed in 0.8.2; recommended remediation is to update to 0.8.2 or later.

6.1CVSS5.5AI score0.00179EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.13 views

PT-2026-5711

Name of the Vulnerable Software and Affected Versions Rizin versions prior to 0.8.2 Description Rizin, a reverse engineering framework, contains a flaw where a heap overflow can occur when processing maliciously crafted mach0 files with invalid dyld chained segment entries. This issue can be...

4.4CVSS5.4AI score0.00179EPSS
Exploits0References11
OSV
OSV
added 2026/01/30 10:9 p.m.8 views

RLSA-2026:1359 Moderate: gcc-toolset-15-binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

5.3CVSS6AI score0.00235EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2026/01/30 10:9 p.m.7 views

gcc-toolset-15-binutils security update

An update is available for gcc-toolset-15-binutils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Binutils is a collection of binary utilities, including ar fo...

7.8CVSS6AI score0.00235EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/01/27 3:59 p.m.6 views

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/01/27 3:59 p.m.8 views

Moderate: Red Hat Security Advisory: gcc-toolset-15-binutils security update

An update for gcc-toolset-15-binutils is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References2
Rows per page
Query Builder