Lucene search
K

176 matches found

Cvelist
Cvelist
added 2025/07/04 1:37 p.m.6 views

CVE-2025-38206 exfat: fix double free in delayed_free

In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayedfree The double free could happen in the following path. exfatcreateupcasetable exfatcreateupcasetable : return error exfatfreeupcasetable : free -volutbl exfatloaddefaultupcasetable : return erro...

0.00156EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/06/18 12:0 a.m.21 views

Context Manipulation Attacks : Web Agents Are Susceptible to Corrupted Memory

Autonomous web navigation agents, which translate natural language instructions into sequences of browser actions, are increasingly deployed for complex tasks across e-commerce, information retrieval, and content discovery. Due to the stateless nature of large language models LLMs, these agents...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.5 views

CVE-2021-38409

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an access of uninitialized pointer, which may allow an attacker read from or write to unexpected memory locations, leading to a denial-of-service...

7.8CVSS6.8AI score0.00688EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1465)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.2AI score0.05966EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0026: opensc (ALINUX3-SA-2024:0026)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0026 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-40660: A flaw was found in OpenSC...

6.6CVSS6.2AI score0.01174EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2025/05/01 1:4 p.m.24 views

USN-7472-1: Micropython vulnerabilities

Junwha Hong and Wonil Jang discovered that Micropython incorrectly handled the length of a buffer in mpvfsumount, leading to a heap-based buffer overflow vulnerability. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to...

9.8CVSS7.5AI score0.01029EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2025/03/26 12:0 a.m.6 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2024, and Adobe Acrobat 2020, related to memory usage after it is freed, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2024, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow...

7.8CVSS7.7AI score0.00345EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/06 5:4 a.m.5 views

CVE-2025-20930

Out-of-bounds read in parsing jpeg image in Samsung Notes prior to version 4.4.26.71 allows local attackers to read out-of-bounds memory...

5.5CVSS6.8AI score0.00139EPSS
Exploits0References1
CERT
CERT
added 2025/02/28 12:0 a.m.21 views

Paragon Software Hard Disk Manager product line contains five memory vulnerabilities within its BioNTdrv.sys driver that allow for privilege escalation and denial-of-service (DoS) attacks

Overview The Paragon Software Hard Disk Manager HDM product line contains a vulnerable driver titled BioNTdrv.sys. The driver, versions 10.1.X.Y and older, 1.0.0.0, 1.1.0.0, 1.3.0.0, 1.4.0.0, and 1.5.1.0, contain five vulnerabilities. These include arbitrary kernel memory mapping and write...

8.4CVSS7.9AI score0.00471EPSS
Exploits1References2
Amazon
Amazon
added 2025/02/21 12:0 a.m.5 views

Medium: php8.1

Issue Overview: The upstream advisory describes this issue as follows: A memory-related vulnerability in PHP's filter handling system, particularly when processing input with convert.quoted-printable-decode filters, leads to a segmentation fault. This vulnerability is triggered through specific...

9.8CVSS10AI score0.02286EPSS
Exploits6
OSV
OSV
added 2025/02/10 12:0 p.m.6 views

RUSTSEC-2025-0028 cve-rs introduces memory vulnerabilities in safe Rust

This crate is a joke and should never be used. cve-rs provides demonstrations of common memory vulnerabilities such as buffer overflows and segfaults implemented completely within safe Rust. Internally, this crate does not use unsafe code, it instead exploits a soundness bug in rustc:...

7.4AI score
Exploits0References3
OSV
OSV
added 2025/02/10 12:0 p.m.7 views

RUSTSEC-2025-0029 totally-safe introduces memory vulnerabilities in safe Rust

totally-safe provides unsound APIs that exploit a soundness bug in rustc: https://github.com/rust-lang/rust/issues/25860...

7.1AI score
Exploits0References3
RustSec
RustSec
added 2025/02/10 12:0 p.m.16 views

cve-rs introduces memory vulnerabilities in safe Rust

This crate is a joke and should never be used. cve-rs provides demonstrations of common memory vulnerabilities such as buffer overflows and segfaults implemented completely within safe Rust. Internally, this crate does not use unsafe code, it instead exploits a soundness bug in rustc:...

7.4AI score
Exploits0
RustSec
RustSec
added 2025/02/10 12:0 p.m.22 views

totally-safe introduces memory vulnerabilities in safe Rust

totally-safe provides unsound APIs that exploit a soundness bug in rustc: https://github.com/rust-lang/rust/issues/25860...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2025/02/04 12:0 a.m.4 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 135, which stems from the presence of a number of memory security vulnerabilities that could lead to arbitrary code execution...

9.8CVSS8.8AI score0.00558EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/01/14 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1026)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.8AI score0.05966EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/14 12:0 a.m.10 views

Fedora: Security Advisory (FEDORA-2024-2ac7273bab)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.5AI score0.00457EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/10/14 12:0 a.m.7 views

Fedora: Security Advisory (FEDORA-2024-7d06f67cf5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.5AI score0.00457EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2024/09/02 12:0 a.m.60 views

Unbreakable Enterprise kernel security update

4.1.12-124.89.4 - isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284 - tracing: Restructure traceclockglobal to never block Steven Rostedt VMware Orabug: 36940388 CVE-2021-46939 - udf: Fix NULL pointer dereference in udfsymlink function Arturo Giusti Orabug:...

7.8CVSS7.5AI score0.00689EPSS
Exploits0
Amd
Amd
added 2024/08/05 12:0 a.m.22 views

Guest Memory Vulnerabilities

AMD ID: AMD-SB-3011 Potential Impact: Confidentiality and Integrity Severity: High Summary A researcher has reported to AMD three potential vulnerabilities in Secure Encrypted Virtualization – Secure Nested Paging SEV-SNP. The reports detail ways that a malicious hypervisor controlled by the host...

7.9CVSS6.9AI score0.00493EPSS
Exploits2
Rows per page
Query Builder