Lucene search
+L

8948 matches found

EUVD
EUVD
added yesterday9 views

EUVD-2026-45140

Unsigned to Signed Conversion Error CWE-196 vulnerability exists in TTSSH2 plugin of Tera Term provided by TeraTerm Project. When Tera Term attempts to establish an SSH connection to a server set up by an attacker, out-of-bounds read/write may occur. As a result, the contents of adjacent memory...

6.3CVSS6.6AI score0.0032EPSS
Exploits0References3
CVE
CVE
added yesterday16 views

CVE-2026-58317

The vulnerability CVE-2026-58317 affects the TTSSH2 plugin used by Tera Term. It is described as an Unsigned to Signed Conversion Error (CWE-196) that can occur when Tera Term connects to a server controlled by an attacker. The issue may trigger an out-of-bounds read/write, potentially causing ad...

6.3CVSS6.6AI score0.0032EPSS
Exploits0References3
Cvelist
Cvelist
added yesterday31 views

CVE-2026-60060

Improper Handling of Length Parameter Inconsistency CWE-130 vulnerability exists in TTSSH2 plugin of Tera Term provided by TeraTerm Project. When Tera Term attempts to establish an SSH connection to a server set up by an attacker, out-of-bounds read/write may occur. As a result, the contents of...

6.3CVSS0.0032EPSS
Exploits0References3
EUVD
EUVD
added yesterday10 views

EUVD-2026-45139

Improper Handling of Length Parameter Inconsistency CWE-130 vulnerability exists in TTSSH2 plugin of Tera Term provided by TeraTerm Project. When Tera Term attempts to establish an SSH connection to a server set up by an attacker, out-of-bounds read/write may occur. As a result, the contents of...

6.3CVSS6.6AI score0.0032EPSS
Exploits0References3
NVD
NVD
added 2 days ago10 views

CVE-2026-60073

An out-of-bounds read in the Productivity Suite allows a physical attacker to control the length of data sent to a USB device. This can lead to a system crash or disclosure of kernel memory...

5.9CVSS0.00167EPSS
Exploits0References3
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-45036

An out-of-bounds read in the Productivity Suite allows a physical attacker to control the length of data sent to a USB device. This can lead to a system crash or disclosure of kernel memory...

5.9CVSS6.1AI score0.00167EPSS
Exploits0References3
Cvelist
Cvelist
added 2 days ago36 views

CVE-2026-60073 AutomationDirect Productivity Suite Out-of-bounds Read

An out-of-bounds read in the Productivity Suite allows a physical attacker to control the length of data sent to a USB device. This can lead to a system crash or disclosure of kernel memory...

5.9CVSS0.00167EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 days ago6 views

CVE-2026-60073

An out-of-bounds read in the Productivity Suite allows a physical attacker to control the length of data sent to a USB device. This can lead to a system crash or disclosure of kernel memory...

5.9CVSS6.1AI score0.00167EPSS
Exploits0References4
CVE
CVE
added 2 days ago10 views

CVE-2026-60073

The CVE-2026-60073 entry concerns the AutomationDirect Productivity Suite. Affected component: Productivity Suite; vulnerability type: out-of-bounds read. Root cause: an out-of-bounds read allows a physical attacker to influence the length of data sent to a USB device, enabling potential system i...

5.9CVSS6.1AI score0.00167EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-10588

A potential vulnerability could allow a local privileged attacker to disclose the address of protected System Management Mode memory...

6.7CVSS6.1AI score0.00154EPSS
Exploits0References2
CVE
CVE
added 2 days ago11 views

CVE-2026-10588

Technical details (affected products/components/root cause/fix) are not provided in the supplied documents. Monitor Lenovo advisories and CVE records for updates.

6.7CVSS6.1AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 2 days ago3 views

CVE-2026-47729 Squid: Memory disclosure in FTP gateway

Squid is a caching proxy for the Web. Prior to 7.6, due to an improper validation of syntactic correctness of input in the FTP gateway src/clients/FtpGateway.cc, Squid is vulnerable to an out-of-bounds read: when a listing entry date in the TypeA or TypeB directory-listing formats is not followed...

6.5CVSS6.6AI score0.01907EPSS
Exploits1References7
Cvelist
Cvelist
added 2 days ago31 views

CVE-2026-47729 Squid: Memory disclosure in FTP gateway

Squid is a caching proxy for the Web. Prior to 7.6, due to an improper validation of syntactic correctness of input in the FTP gateway src/clients/FtpGateway.cc, Squid is vulnerable to an out-of-bounds read: when a listing entry date in the TypeA or TypeB directory-listing formats is not followed...

6.5CVSS0.01907EPSS
Exploits1References5
CVE
CVE
added 2 days ago91 views

CVE-2026-47729

CVE-2026-47729 affects Squid, a web caching proxy. Before 7.6, the FTP gateway (src/clients/FtpGateway.cc) could perform an out-of-bounds read when a directory listing entry date in TypeA/TypeB formats wasn’t followed by a filename, allowing memory disclosure from unrelated transactions. The issu...

6.5CVSS6.6AI score0.01907EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2 days ago7 views

CVE-2026-43740

A flaw was found in WebKitGTK. Processing maliciously crafted web content can trigger a use-after-free due to improper memory handling, leading to disclosure of process memory...

6.5CVSS6AI score0.00203EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2 days ago7 views

CVE-2026-54058

A flaw was found in Pillow prior to 12.3.0. When an uncompressed McIdas AREA image is loaded from a filename through the mmap raw codec path, attacker-controlled header words can set a row stride smaller than the natural row width. Pixel access such as Image.tobytes, getpixel, convert, or save ca...

9.1CVSS6AI score0.00384EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2 days ago11 views

Linux Distros Unpatched Vulnerability : CVE-2026-54058

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow is a Python imaging library. Prior to 12.3.0, when Pillow loads an uncompressed McIdas AREA image from a filename through the mmap raw codec path,...

8.3CVSS5.4AI score0.00384EPSS
Exploits0References4
NVD
NVD
added 3 days ago6 views

CVE-2026-40956

CVE-2026-40956 is a memory disclosure vulnerability in Secure Access client versions prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can cause a small amount of random memory to leak...

3.7CVSS0.00171EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago33 views

CVE-2026-40956 Memory disclosure in Secure Access Clients

CVE-2026-40956 is a memory disclosure vulnerability in Secure Access client versions prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can cause a small amount of random memory to leak...

2.1CVSS0.00171EPSS
Exploits0References1
CVE
CVE
added 3 days ago10 views

CVE-2026-40956

CVE-2026-40956 is a memory-disclosure vulnerability in Secure Access client versions prior to 14.55. According to connected records, attackers who have intimate knowledge and total control over the tunnel protocol can cause a small amount of random memory to leak. The CVSS v4.0 score is 2.1 (LOW)...

3.7CVSS6.1AI score0.00171EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder