Lucene search
+L

1385 matches found

Rosalinux
Rosalinux
added 2026/03/22 9:2 p.m.9 views

Advisory ROSA-SA-2026-3233

software: libcupsfilters 2.0.0 OS: ROSA-CHROME unaffected versions = libcupsfilters-2.0.0.0-8 affected versions libcupsfilters-2.0.0-8 CVE-ID: CVE-2025-57812 BDU-ID: 2025-15977 CVE-Crit: LOW CVE-DESC.: A vulnerability in the cfFilterImageToRaster function of the CUPS print server is related to...

3.7CVSS5.7AI score0.0044EPSS
Exploits1
Elastic
Elastic
added 2026/03/19 4:54 p.m.9 views

Metricbeat 8.19.13, 9.2.5 Security Update (ESA-2026-09)

Memory Allocation with Excessive Size Value in Metricbeat Leading to Denial of Service Memory Allocation with Excessive Size Value CWE-789 in the Prometheus remotewrite HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation CAPEC-130. Affected Versions: 8.x: All versions...

5.7CVSS5.8AI score0.00179EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/03/18 8:16 p.m.6 views

CVE-2026-31971

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYLEN method, the crambytearraylendecode failed to validat...

8.1CVSS6.3AI score0.00336EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/18 8:16 p.m.6 views

CVE-2026-31968

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.2AI score0.00409EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/18 7:38 p.m.5 views

CVE-2026-31968

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.2AI score0.00409EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/18 1:1 p.m.3 views

GHSA-C8RR-9GXC-JPRV UltraJSON has an integer overflow handling large indent leads to buffer overflow or infinite loop

Summary ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent parameter and the nested depth of the input exceeds INT32MAX. It can also get stuck in an infinite loop if the indent is a large negative number. Both are caused by an integer overflow/underflow...

7.5CVSS6AI score0.00469EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.8 views

HTSlib 安全漏洞

HTSlib is a C-language library developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 have security vulnerabilities. These vulnerabilities stem from the crambytearraylendecode function not verifying the amount of data, which may lead to heap buffer overflows or stack...

8.1CVSS5.9AI score0.00336EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/17 5:58 p.m.1 views

Improperly Controlled Sequential Memory Allocation

Overview parse-server is a version of the Parse backend that can be deployed to any infrastructure that can run Node.js. Affected versions of this package are vulnerable to Improperly Controlled Sequential Memory Allocation in the Cloud function endpoint. An attacker can cause the server process ...

8.2CVSS5.8AI score0.00512EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.5 views

EulerOS Virtualization 2.12.0 : libarchive (EulerOS-SA-2026-1492)

According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libarchive bsdtar before version 3.8.1 in function applysubstitution in file tar/subst.c when...

7.8CVSS6.7AI score0.00341EPSS
Exploits3References6
BDU FSTEC
BDU FSTEC
added 2026/03/16 12:0 a.m.3 views

The vulnerability of the H5O__fsinfo_encode function in the src/H5Ofsinfo.c component of the HDF file processing library allows a attacker to cause a service failure.

The vulnerability of the H5Ofsinfoencode function in the src/H5Ofsinfo.c component of the HDF file processing library is related to the escape of the operation outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

3.3CVSS5.9AI score0.00208EPSS
Exploits1References7Affected Software3
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:40 p.m.5 views

CVE-2026-3085

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS6.4AI score0.00828EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-32259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, when a memory allocation fails i...

6.7CVSS6AI score0.00096EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/12 7:38 p.m.4 views

EUVD-2026-11692

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, when a memory allocation fails in the sixel encoder it would be possible to write past the end of a buffer on the stack. This vulnerability is fixed in 7.1.2-16 and...

6.7CVSS6AI score0.00096EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005781)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005781 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate the box size for the snooped cursor Invalid userspace dma surface copies cou...

5.5CVSS6.9AI score0.00149EPSS
Exploits0References4
NVD
NVD
added 2026/03/02 7:16 p.m.9 views

CVE-2026-0028

In pkvmhostshareguest of memprotect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00152EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/22 4:2 a.m.31 views

CVE-2026-2913 libvips source.c vips_source_read_to_memory heap-based overflow

A vulnerability was determined in libvips up to 8.19.0. The affected element is the function vipssourcereadtomemory of the file libvips/iofuncs/source.c. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The attack's complexity is rated as...

2.5CVSS0.00182EPSS
Exploits1References8
BDU FSTEC
BDU FSTEC
added 2026/02/16 12:0 a.m.5 views

The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.

The vulnerability of the Windows operating system’s kernel is related to overflow in the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS6AI score0.00417EPSS
Exploits0References2Affected Software20
OSV
OSV
added 2026/02/11 1:15 p.m.4 views

CVE-2025-48725

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: QuTS hero...

8.1CVSS6AI score
Exploits0References1
Cvelist
Cvelist
added 2026/02/11 12:19 p.m.25 views

CVE-2025-48724 Qsync Central

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 2026/01/20 and...

2.3CVSS0.00378EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/11 12:19 p.m.5 views

CVE-2025-48725 QuTS hero

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: QuTS hero...

2.3CVSS5.9AI score0.00398EPSS
Exploits0References1
Rows per page
Query Builder