Lucene search
+L

649 matches found

NVD
NVD
added 3 days ago5 views

CVE-2026-20156

As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. The...

8.1CVSS0.00228EPSS
Exploits0References1
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-44717

As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. The...

8.1CVSS6.2AI score0.00228EPSS
Exploits0References1
CVE
CVE
added 3 days ago23 views

CVE-2026-20156

CVE-2026-20156 relates to Cisco RoomOS and a set of buffer management vulnerabilities (CWE-119) arising from improper bounds checks. The hardening release addresses multiple internally discovered issues; CVSSv3.1 metrics indicate network-access, high impact on confidentiality, integrity, and avai...

8.1CVSS6.2AI score0.00228EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 3 days ago5 views

kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs()

A flaw was found in the Linux kernel's Direct Rendering Manager DRM Graphics Execution Manager GEM component. This vulnerability arises from an inconsistent calculation of plane dimensions, which can lead to incorrect memory allocation checks. A local attacker could exploit this by creating a...

7.8CVSS6.2AI score0.00139EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2026/07/08 12:0 a.m.6 views

The vulnerability of ImageMagick’s PSD format file processor allows attackers to compromise the confidentiality of protected information.

The vulnerability of ImageMagick’s PSD format file processor relates to reading data beyond the permitted range of memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality of the protected information...

7.8CVSS7.2AI score0.00348EPSS
Exploits0References6Affected Software5
Redos
Redos
added 2026/07/06 12:0 a.m.4 views

ROS-20260706-73-0006

The vulnerability of the pgrestoreattributestats function in the PostgreSQL database management system is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information that is protected by this function...

4.3CVSS5.9AI score0.00208EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/27 3:5 a.m.14 views

CVE-2026-53171

A flaw was found in the Linux kernel's accel/ethosu driver. The dmalength function, responsible for calculating Direct Memory Access DMA region usage, contains several arithmetic issues. These issues, including potential underflows and overflows during calculations, can lead to an under-reporting...

8.8CVSS5.8AI score0.00137EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/26 3:18 p.m.9 views

CVE-2026-45195

Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a memory read or write outside the permitted range of memory for the host kernel. Addresses passed to the GPU Firmware can be used by the Firmware for more privileged memory accesses...

7.8CVSS5.8AI score0.00106EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/06/26 12:0 a.m.5 views

The vulnerability of the br_nd_send() function in the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the brndsend function in the Linux operating system is related to reading data beyond the permitted range of memory. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality and accessibility of protected information...

9.4CVSS6AI score0.00485EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/06/24 12:0 a.m.3 views

The vulnerability of the strchr() function in the Squid proxy server allows a hacker to gain unauthorized access to protected information.

The vulnerability of the strchr function in the Squid proxy server is related to the escape from memory buffer boundaries. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to protected information...

6.8CVSS6AI score0.01907EPSS
Exploits1References10Affected Software3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: The imagetkexecbuffer function does not check whether the ima-kexec-buffer of the previous kernel lies outside the addressable memory range. This can lead to a kernel panic if the new kernel is booted with the mem=X argument, and...

5.5CVSS5.7AI score0.0016EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux

A flaw was discovered in the Linux kernel. A use-after-free occurred in the way the console subsystem utilized ioctls KDGKBSENT and KDSKBSENT. A local user could exploit this flaw to gain access to memory beyond its intended scope. The most significant threat posed by this vulnerability is to dat...

4.1CVSS6.7AI score0.00434EPSS
Exploits1References1
Redos
Redos
added 2026/06/10 12:0 a.m.10 views

ROS-20260610-73-0010

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

6.5CVSS5.6AI score0.00231EPSS
Exploits0
Redos
Redos
added 2026/06/09 12:0 a.m.11 views

ROS-20260609-73-0011

The vulnerability of the ngxhttpcharsetmodule module in NGINX Plus and NGINX Open Source web servers is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality and accessibility of the protected...

6.3CVSS5.7AI score0.00717EPSS
Exploits0
Redos
Redos
added 2026/06/09 12:0 a.m.12 views

ROS-20260609-73-0038

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

7.5CVSS5.6AI score0.00433EPSS
Exploits0
Redos
Redos
added 2026/06/09 12:0 a.m.11 views

ROS-20260609-73-0006

The vulnerability of the jpegimageload function in the image loading library GdkPixbuf is related to the situation where the operation exits the buffer boundaries in memory when processing a specially created JPEG image. Exploiting this vulnerability could allow a malicious actor to cause service...

7.5CVSS5.7AI score0.01069EPSS
Exploits1
OSV
OSV
added 2026/06/08 1:15 p.m.12 views

JLSEC-2026-580

In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to be freed and reused in a certain way, a bounds check could fail and memory outside a buffer could be written to, or uninitialized data could be...

7.5CVSS8AI score0.04446EPSS
Exploits0References15
Redos
Redos
added 2026/06/08 12:0 a.m.9 views

ROS-20260608-73-0011

The vulnerability of the .NET software platform is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.3CVSS5.9AI score0.00551EPSS
Exploits0
Rosalinux
Rosalinux
added 2026/06/01 7:53 a.m.13 views

Advisory ROSA-SA-2026-3296

CVE-ID: CVE-2020-10809 BDU-ID: 2024-07119 CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in the Decompress function in the decompress.c file. This vulnerability is related to writing beyond the memory bounds. Exploitation of this vulnerability could allow an attacker to cause a service failure...

9.8CVSS6.5AI score0.0151EPSS
Exploits4
CVE
CVE
added 2026/05/27 12:56 p.m.47 views

CVE-2026-46020

CVE-2026-46020 affects the Linux kernel DAMON subsystem. The issue arises from unvalidated damos_quota_goal->nid for node_mem_{used,free}_bp, which is used by si_meminfo_node() and NODE_DATA(), potentially enabling out-of-bounds memory access via DAMON_SYSFS. The provided patch series mm/damon...

7.1CVSS5.9AI score0.00124EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder