Lucene search
K

534 matches found

NCSC
NCSC
added yesterday5 views

Vulnerabilities found in Apple iOS and iPadOS

Apple has identified several vulnerabilities in iOS and iPadOS. These vulnerabilities include out-of-bounds access, use-after-free errors, memory handling issues, insufficient input validation, type confusion, double-free operations, stack overflows, race conditions, and path handling problems...

9.1CVSS6.1AI score0.0036EPSS
Exploits2References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: HID: amdsfh: Switch to device-managed dmamalloccoherent Using the device-managed version simplifies cleanup in the probe function. This also ensures proper cleanup, which helps to resolve memory errors, page faults, btrfs...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in libxml2

A issue was discovered in libxml2 before version 2.10.4. When hashing empty dictionary strings in a crafted XML document, the xmlDictComputeFastKey function in dict.c can produce non-deterministic values, resulting in various logical and memory errors, such as double-free errors. This behavior...

6.5CVSS7.1AI score0.01013EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in GIMP

A flaw was discovered in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP may be tricked into generating serious memory errors, potentially leading to crashes and causing use-after-free issues...

7.3CVSS7AI score0.0017EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in GIMP

A flaw was discovered in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP may be tricked into generating serious memory errors, potentially leading to crashes and causing a heap buffer overflow...

7.3CVSS7.5AI score0.00193EPSS
Exploits0References2
Redos
Redos
added 2026/06/11 12:0 a.m.5 views

ROS-20260611-73-0036

The vulnerabilities of the sdlPointerNew and sdlPointerFree functions in the FreeRDP remote desktop protocol are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow a malicious actor to cause service failure...

8.7CVSS7.3AI score0.00423EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.5 views

CentOS 9 : libsolv-0.7.24-6.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libsolv-0.7.24-6.el9 build changelog. - A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker- controlled compressed data within .solv files...

7.8CVSS5.7AI score0.00205EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.16 views

Amazon Linux 2023 : php8.3, php8.3-bcmath, php8.3-cli (ALAS2023-2026-1728)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1728 advisory. In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, the SOAP extension's object deduplication mechanism stores pointers to PHP objects in a globa...

9.8CVSS6.4AI score0.0076EPSS
Exploits1References16
RedhatCVE
RedhatCVE
added 2026/05/21 1:5 p.m.14 views

CVE-2026-44071

A flaw was found in Netatalk. This issue arises because the software is compiled without FORTIFYSOURCE, a security feature that provides built-in buffer overflow detection at runtime. A remote attacker could exploit this by triggering memory errors that would otherwise be safely handled, leading ...

3.7CVSS5.9AI score0.00335EPSS
Exploits0References2
NVD
NVD
added 2026/05/21 9:16 a.m.12 views

CVE-2026-44071

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS0.00335EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/21 8:14 a.m.38 views

CVE-2026-44071 FORTIFY_SOURCE disabled

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS0.00335EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 8:14 a.m.19 views

CVE-2026-44071

Netatalk versions 3.1.2 through 4.4.2 are compiled without FORTIFY_SOURCE, disabling built-in runtime buffer overflow detection. This may allow a remote attacker to cause a minor denial of service via memory errors that would otherwise be detected and terminated. No exploit details or patched ver...

3.7CVSS6AI score0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/21 8:14 a.m.8 views

CVE-2026-44071 FORTIFY_SOURCE disabled

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS6AI score0.00335EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/21 8:14 a.m.5 views

CVE-2026-44071

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS6AI score0.00335EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.7 views

Netatalk 安全漏洞

Netatalk is an open-source software developed by Netatalk. It provides AFP file server functionality for Classic Mac OS and macOS on Unix-like operating systems. Versions 3.1.2 to 4.4.2 of Netatalk contain security vulnerabilities. These vulnerabilities stem from the lack of FORTIFYSOURCE...

3.7CVSS6AI score0.00335EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/15 2:12 p.m.8 views

CVE-2026-6210

A flaw was found in Qt SVG. A remote attacker could exploit a vulnerability by providing a specially crafted SVG image. This issue arises from incorrect handling of SVG marker references, where the software misinterprets data types, leading to memory access errors and an infinite loop. This can...

8.7CVSS5.7AI score0.00279EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/15 12:0 a.m.10 views

FreeBSD : www/nginx -- Remote Code Execution/DoS (3414ac89-4f9f-11f1-a1c0-0050569f0b83)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3414ac89-4f9f-11f1-a1c0-0050569f0b83 advisory. nginx development team reports: When using the proxysetbody directive, an attacker might injec...

9.2CVSS6.7AI score0.61469EPSS
Exploits41References7
Rockylinux
Rockylinux
added 2026/05/14 12:3 p.m.21 views

freerdp security update

An update is available for freerdp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released...

9.8CVSS5.8AI score0.00599EPSS
Exploits7
RedHat Linux
RedHat Linux
added 2026/05/13 1:5 a.m.13 views

Moderate: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS5.8AI score0.00599EPSS
Exploits7References9
RedHat Linux
RedHat Linux
added 2026/05/12 11:31 p.m.12 views

Moderate: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS5.8AI score0.00599EPSS
Exploits7References9
Rows per page
Query Builder