Lucene search
+L

12744 matches found

EUVD
EUVD
added 4 days ago6 views

EUVD-2026-44685

When NGINX Plus is configured to use the Message Queuing Telemetry Transport MQTT filter module ngxstreammqttfiltermodule, unauthenticated attackers can send requests with conditions beyond the attacker's control to cause a heap buffer over-read in the NGINX worker process, leading to a restart...

6.3CVSS6.2AI score0.00265EPSS
Exploits0References1
NVD
NVD
added 5 days ago4 views

CVE-2026-57968

Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00318EPSS
Exploits0References1
NVD
NVD
added 5 days ago3 views

CVE-2026-50475

Buffer over-read in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS0.0049EPSS
Exploits0References2
NVD
NVD
added 5 days ago3 views

CVE-2026-50445

Buffer over-read in Windows RDP allows an unauthorized attacker to disclose information over a network...

6.5CVSS0.00666EPSS
Exploits0References1
NVD
NVD
added 5 days ago4 views

CVE-2026-50435

Buffer over-read in Windows Overlay Filter allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00245EPSS
Exploits0References1
NVD
NVD
added 5 days ago3 views

CVE-2026-50372

Buffer over-read in Windows Redirected Drive Buffering allows an authorized attacker to elevate privileges locally...

7CVSS0.00252EPSS
Exploits0References1
NVD
NVD
added 5 days ago3 views

CVE-2026-50341

Buffer over-read in Windows NTFS allows an authorized attacker to disclose information locally...

5.5CVSS0.00306EPSS
Exploits0References1
Cvelist
Cvelist
added 5 days ago32 views

CVE-2025-43892

A buffer over-read vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions may allow an authenticated remote attacker to return a portion of device memory in the redirect response via submitti...

4.3CVSS0.00318EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 5 days ago6 views

Windows Print Spooler Information Disclosure Vulnerability

Buffer over-read in Windows Print Spooler Components allows an authorized attacker to disclose information locally...

6.1CVSS6.1AI score0.00296EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago7 views

Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability

Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00318EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago19 views

Windows Hyper-V Denial of Service Vulnerability

Buffer over-read in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...

4.5CVSS6.1AI score0.00369EPSS
Exploits0
Positive Technologies
Positive Technologies
added 5 days ago5 views

PT-2026-58423

Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description A buffer over-read in Windows RDP allows an unauthorized attacker to disclose sensitive information over a network and affect the system. A buffer over-read occurs when a program reads mo...

6.5CVSS6.1AI score0.00666EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 5 days ago11 views

PT-2026-58478

Name of the Vulnerable Software and Affected Versions Remote Desktop Client affected versions not specified Description A buffer over-read exists in the Remote Desktop Client, which allows an unauthorized attacker to disclose information over a network. This issue occurs when the client connects ...

6.5CVSS6.1AI score0.00636EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 5 days ago7 views

Microsoft Windows Subsystem for Linux (WSL2) < 2.7.8 EoP (CVE-2026-57968) (July 2026)

The version of Microsoft Windows Subsystem for Linux WSL2 on the remote Windows host is prior to 2.7.8. It is, therefore, affected by an elevation of privilege vulnerability: - Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00318EPSS
Exploits0References2
OSV
OSV
added 2026/07/10 11:1 a.m.2 views

OPENSUSE-SU-2026:21313-1 Security update for python-Django

This update for python-Django fixes the following issues: Changes in python-Django: - CVE-2026-48588: Potential exposure of private data via cached Set-Cookie response bsc1271029 - CVE-2026-53877: Heap buffer over-read in GDALRaster bsc1271030 - CVE-2026-53878: Header injection possibility since...

6.3CVSS7AI score0.00375EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/07/09 12:0 a.m.8 views

openSUSE 16: apache2 / apache2-devel / apache2-event / apache2-manual / etc (openSUSE-SU-2026:21235-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:21235-1 advisory. This update for apache2 fixes the following issues - CVE-2026-29167: modldap per-dir use-after-free bsc1267976. - CVE-2026-29170: modproxyftp XS...

9.8CVSS6.2AI score0.11471EPSS
Exploits8References39
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53877

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. django.contrib.gis.gdal.GDALRaster over-reads its in-memory buffer when constructed fr...

6.3CVSS7AI score0.00291EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/05 10:23 p.m.10 views

CVE-2026-10657

Zephyr's DNS resolver detects mDNS .local queries in dnsresolvenameinternal subsys/net/lib/dns/resolve.c with memcmpstrrchrquery, '.', ".local", 7, which always reads a fixed 7 bytes from the suffix pointer. When the resolved hostname's final label is shorter than 7 bytes e.g. names ending in .or...

5.3CVSS6.2AI score0.00243EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/05 12:0 a.m.14 views

PT-2026-55829

Name of the Vulnerable Software and Affected Versions Zephyr versions 1.10.0 through 3.7.0 Description The DNS resolver contains a flaw in the dns resolve name internal function within subsys/net/lib/dns/resolve.c when CONFIG MDNS RESOLVER is enabled. The system uses memcmp to detect mDNS .local...

3.7CVSS6AI score0.00243EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2026/07/01 8:1 a.m.7 views

Glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()

...

8.2CVSS7AI score0.00322EPSS
Exploits1
Rows per page
Query Builder