Lucene search
K

2058 matches found

EUVD
EUVD
added 2026/05/08 6:32 a.m.8 views

EUVD-2022-31079

The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash due to a double fetch vulnerability at aswArPot+0xc4a3...

7.8CVSS6.4AI score0.00217EPSS
Exploits0References3
CVE
CVE
added 2026/05/08 12:0 a.m.27 views

CVE-2026-8119

CVE-2026-8119 affects Open5GS up to 2.7.7, specifically the NSSF path. The vulnerable element is the function ogs_sbi_stream_find_by_id in the file /lib/sbi/nghttp2-server.c of the NSSF component. A manipulation leads to a denial of service . The vulnerability requires a local attacker (attack ve...

5.5CVSS5.5AI score0.00202EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/05/07 9:30 p.m.28 views

EUVD-2026-28417

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

4.8CVSS5.4AI score0.00264EPSS
Exploits1References10
CVE
CVE
added 2026/05/07 6:45 p.m.25 views

CVE-2026-8086

OSGeo GDAL contains a local heap-based buffer overflow in SWnentries (SWapi.c) affecting versions up to 3.13.0dev-4. The vulnerability arises from incorrect handling of DimensionName. Local exploitation is possible; a public exploit exists. Remediation: upgrade to 3.12.4RC1 (patch 9491e794f1757f0...

7.8CVSS6.2AI score0.00237EPSS
Exploits1References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38571

Name of the Vulnerable Software and Affected Versions OSGeo gdal versions prior to 3.13.0RC1 Description A weakness in the GDfieldinfo function within the frmts/hdf4/hdf-eos/GDapi.c file can lead to an out-of-bounds read, which occurs when a program reads data past the end of the intended buffer...

5.5CVSS5.7AI score0.00246EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2026/05/01 4:35 p.m.7 views

CVE-2026-43015

A flaw was found in the Linux kernel’s macb network driver. Improper handling of clock resources during the removal of a PCI Peripheral Component Interconnect device driver can lead to a use-after-free vulnerability. A local attacker could exploit this by performing specific module operations,...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/01 12:0 a.m.4 views

CVE-2026-37526

AGL app-framework-binder afb-daemon through v19.90.0 allows any local process to execute privileged supervision commands Exit, Do, Sclose, Config, Trace, Debug, Token, slist without authentication via the abstract Unix socket @urn:AGL:afs:supervision:socket. The onsupervisioncall function in...

7.8CVSS6AI score0.00123EPSS
Exploits0References3
OSV
OSV
added 2026/04/30 8:51 a.m.4 views

BIT-PYTORCH-2026-4538 PyTorch pt2 Loading deserialization

A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The projec...

7.8CVSS5.1AI score0.00239EPSS
Exploits0References6
OSV
OSV
added 2026/04/29 1:21 p.m.9 views

JLSEC-2026-329

A vulnerability was found in HDF5 up to 1.14.6. It has been declared as problematic. Affected by this vulnerability is the function H5Omsgflush of the file src/H5Omessage.c. The manipulation of the argument oh leads to heap-based buffer overflow. The attack needs to be approached locally. The...

5.3CVSS4AI score0.00255EPSS
Exploits1References4
OSV
OSV
added 2026/04/29 1:21 p.m.9 views

JLSEC-2026-343

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...

4.8CVSS3.9AI score0.00208EPSS
Exploits1References6
OSV
OSV
added 2026/04/29 1:21 p.m.9 views

JLSEC-2026-342

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...

4.8CVSS4.1AI score0.00203EPSS
Exploits1References6
OSV
OSV
added 2026/04/29 1:21 p.m.7 views

JLSEC-2026-351

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FSsectlinksize of the file src/H5FSsection.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to t...

5.5CVSS3.8AI score0.00215EPSS
Exploits1References6
OSV
OSV
added 2026/04/29 1:21 p.m.8 views

JLSEC-2026-347

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the function H5Gnodecmp3 of the file src/H5Gnode.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

7.8CVSS4AI score0.00227EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-7233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component...

6.1CVSS5.4AI score0.00238EPSS
Exploits1References3
CVE
CVE
added 2026/04/28 8:45 p.m.7 views

CVE-2026-7318

The CVE affects elie mcp-project 0.1.0, specifically the function search_papers in research_server.py. The vulnerability arises from path traversal when manipulating the topic argument. Local access is required for exploitation, and the exploit is publicly available. No remediation or patch detai...

5.9CVSS5.8AI score0.00185EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/27 10:15 p.m.4 views

CVE-2026-7179 OSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversal

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS5AI score0.00173EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.5 views

CVE-2026-7038

A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficiently protected credentials. The attack is restricted to local execution. The exploit has been made...

4.8CVSS4.3AI score0.00138EPSS
Exploits0References1
OSV
OSV
added 2026/04/27 1:14 p.m.5 views

JLSEC-2026-192

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function LWOImporter::CountVertsAndFacesLWO2 of the file assimp/code/AssetLib/LWO/LWOLoader.cpp. The manipulation leads to out-of-bounds read. The attack needs to be...

7.8CVSS4.3AI score0.00221EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2026/04/16 9:1 a.m.5 views

SUSE CVE-2026-3392

A weakness has been identified in FascinatedBox lily up to 2.3. The affected element is the function evaltree of the file src/lilyemitter.c. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been made available to the public and could ...

5.5CVSS5.4AI score0.00167EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/14 6:30 p.m.5 views

EUVD-2026-22361

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00411EPSS
Exploits0References2
Rows per page
Query Builder