Lucene search
K

425 matches found

OSV
OSV
added 2026/03/06 8:16 p.m.5 views

UBUNTU-CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/06 8:16 p.m.4 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2026/03/06 4:15 p.m.8 views

CLSA-2026-1772813746 php: Fix of CVE-2017-9119

CVE-2017-9119: handle memory limit error during string reallocation correctly...

9.8CVSS7.3AI score0.03558EPSS
Exploits1References1
OSV
OSV
added 2026/03/06 4:3 p.m.7 views

CLSA-2026-1772812991 skopeo: Fix of 3 CVEs

rebuild with newer golang version 1.22.9-1.el92.tuxcare.els6 to fix the following CVEs - CVE-2025-61726: limit parsed URL query parameters to mitigate excessive memory consumption during form parsing - CVE-2025-61729: fix excessive resource consumption when constructing hostname error messages...

10CVSS7.1AI score0.00765EPSS
Exploits3References1
OSV
OSV
added 2026/03/06 3:36 p.m.11 views

CLSA-2026-1772811390 php: Fix of CVE-2017-9119

CVE-2017-9119: handle memory limit error during string reallocation correctly...

9.8CVSS5.8AI score0.03558EPSS
Exploits1References1
CVE
CVE
added 2026/03/06 12:0 a.m.26 views

CVE-2025-69654

CVE-2025-69654 concerns the QuickJS qjs interpreter. A crafted JavaScript input, when run with the -m option and a low memory limit on the QuickJS release 2025-09-13, can cause an out-of-memory condition followed by an assertion failure in JS_FreeRuntime (list_empty(&rt->gc_obj_list)) during r...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2026/03/06 12:0 a.m.5 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.2AI score0.00284EPSS
Exploits1
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.4 views

Astra Linux – Vulnerability in Ruby-Rack

Rack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, Rack::Multipart::Parser buffers the entire multipart preamble bytes before the first boundary in memory without any size limit. A client can send a large preamble followed by a valid boundary, causing...

7.5CVSS6.6AI score0.00868EPSS
Exploits0References3
OSV
OSV
added 2026/02/25 5:39 p.m.18 views

CLSA-2026-1772041183 grafana: Fix of 3 CVEs

rebuild with newer golang version 1.22.9-1.el92.tuxcare.els5 to fix the following CVE's - CVE-2025-61726: limit parsed URL query parameters to mitigate excessive memory consumption during form parsing - CVE-2025-61728: fix denial-of-service in archive/zip by replacing super-linear index...

7.5CVSS7.1AI score0.00761EPSS
Exploits3References1
OSV
OSV
added 2026/02/25 5:26 p.m.2 views

GHSA-F229-3862-4942 @enclave-vm/core is vulnerable to Sandbox Escape

Summary It is possible to escape the security boundraries set by @enclave-vm/core, which can be used to achieve remote code execution RCE. The issue has been fixed in version 2.11.1. --- Details It is possible to obtain the native Object constructor instead of the SafeObject wrapper. This can be...

10CVSS7AI score0.00878EPSS
Exploits2References4
OSV
OSV
added 2026/02/14 4:15 p.m.5 views

UBUNTU-CVE-2026-23157

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not strictly require dirty metadata threshold for metadata writepages BUG There is an internal report that over 1000 processes are waiting at the ioscheduletimeout of balancedirtypages, causing a system hang and trigger...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References5
EUVD
EUVD
added 2026/01/12 6:18 p.m.7 views

EUVD-2026-2006

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of Service DoS vulnerability exists in cpp-httplib due to the unsafe handling of compressed HTTP request bodies Content-Encoding: gzip, br, etc.. The library validates the...

8.7CVSS6.2AI score0.00353EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000333)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000333 advisory. A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver,...

5.5CVSS6.2AI score0.00538EPSS
Exploits0References4
OSV
OSV
added 2025/12/09 2:52 a.m.4 views

CVE-2025-66627 Wasmi's Linear Memory has a Critical Use After Free Vulnerability

Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0, 0.41.1, 0.42.0 through 0.47.1, 0.50.0 through 0.51.2 and 1.0.0, Wasmi's linear memory implementation leads to a Use After Free vulnerability, triggered by a WebAssembly module under certain memory...

8.4CVSS7.2AI score0.00128EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.8 views

PT-2025-49777

Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0, 0.41.1, 0.42.0 through 0.47.1, 0.50.0 through 0.51.2 and 1.0.0, Wasmi's linear memory implementation leads to a Use After Free vulnerability, triggered by a WebAssembly module under certain memory...

8.4CVSS7.2AI score0.00128EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-7223

Malware in sbrugna...

6.5CVSS6.3AI score0.02494EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-15357

Malware in sbrugna...

6.8CVSS4.8AI score0.0187EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2007-4641

Malware in sbrugna...

7.5CVSS6AI score0.03267EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0103

Malware in sbrugna...

5.3CVSS7.3AI score0.03546EPSS
Exploits1References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-6631

Malware in sbrugna...

8.1CVSS8.7AI score0.04824EPSS
Exploits0References13
Rows per page
Query Builder