Lucene search
K

5250 matches found

Redos
Redos
added 2026/06/18 12:0 a.m.6 views

ROS-20260618-73-0008

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
EUVD
EUVD
added 2026/06/13 12:34 a.m.7 views

EUVD-2025-210124

Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...

7.8CVSS5.7AI score0.00146EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.9 views

FreeBSD : h2o -- heap overrun parsing zero-length SNI (fba766f4-ccda-4e1b-8875-ab857c6a6532)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fba766f4-ccda-4e1b-8875-ab857c6a6532 advisory. h2o project reports: When h2o receives a TLS or QUIC ClientHello containing a zero-length SNI extension...

5.5AI score0.00052EPSS
Exploits0References3
OSV
OSV
added 2026/06/11 7:16 p.m.6 views

ALPINE-CVE-2026-52859

Vim is an open source, command line text editor. Prior to version 9.2.0565, the updatesnapshot function in src/terminal.c copies the visible terminal screen into the scrollback buffer when a snapshot is taken. For each screen cell it walks the cell's chars array with no upper bound, stopping only...

8.2CVSS5.5AI score0.00303EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 11:16 p.m.16 views

CVE-2026-48994

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-24, a missing check of a return value could lead to a heap buffer over-write in the MAT decoder on 32-bit systems. This issue has been patched in versions 6.9.13-48...

5.9CVSS0.00227EPSS
Exploits0References1
Redos
Redos
added 2026/06/10 12:0 a.m.8 views

ROS-20260610-73-0015

The vulnerability in browsers Firefox, Firefox ESR, and email clients Thunderbird, Thunderbird ESR, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.8CVSS6.3AI score0.0034EPSS
Exploits0
Redos
Redos
added 2026/06/10 12:0 a.m.8 views

ROS-20260610-73-0013

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

5.3CVSS5.6AI score0.00227EPSS
Exploits0
Redos
Redos
added 2026/06/10 12:0 a.m.7 views

ROS-20260610-73-0026

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

9.8CVSS5.6AI score0.00409EPSS
Exploits0
Redos
Redos
added 2026/06/10 12:0 a.m.10 views

ROS-20260610-73-0044

The vulnerability of the smartcardunpacksetattribcall function in the RDP client FreeRDP is related to the execution of operations outside the buffer in memory, resulting from an incorrect validation of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary...

9.1CVSS8.6AI score0.00756EPSS
Exploits1
Redos
Redos
added 2026/06/10 12:0 a.m.8 views

ROS-20260610-73-0010

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

6.5CVSS5.6AI score0.00231EPSS
Exploits0
Redos
Redos
added 2026/06/09 12:0 a.m.7 views

ROS-20260609-73-0038

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

7.5CVSS5.6AI score0.00433EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.5 views

CVE-2026-40528

A flaw was found in OpenSC. A local attacker can exploit this vulnerability by supplying a specially crafted profile configuration file to the pkcs15-init utility. This can lead to a stack and heap buffer overrun, allowing the attacker to corrupt memory. This memory corruption could potentially...

7.8CVSS5.6AI score0.00146EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/08 2:7 a.m.11 views

xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of servi...

7.8CVSS5.7AI score0.0038EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.15 views

Amazon Linux 2023 : gnutls, gnutls-c++, gnutls-dane (ALAS2023-2026-1777)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1777 advisory. A remotely triggerable underflow in the DTLS reassembly code led to a heap overrun. The issue was reported in the issue tracker as 1811 by Joshua Rogers of AISLE Research Team. CVE-2026-33845 Tenable h...

9.1CVSS5.6AI score0.00805EPSS
Exploits0References4
Redos
Redos
added 2026/06/08 12:0 a.m.6 views

ROS-20260608-73-0011

The vulnerability of the .NET software platform is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.3CVSS5.9AI score0.00551EPSS
Exploits0
Redos
Redos
added 2026/06/08 12:0 a.m.7 views

ROS-20260608-73-0019

The vulnerability of the Microsoft Visual Studio software development tool and the .NET software platform is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.5CVSS5.9AI score0.01553EPSS
Exploits0
Redos
Redos
added 2026/06/08 12:0 a.m.8 views

ROS-20260608-73-0026

The vulnerability of the Microsoft Visual Studio software development tool and the .NET software platform is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.5CVSS5.9AI score0.01553EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.10 views

Important: gnutls

Issue Overview: A remotely triggerable underflow in the DTLS reassembly code led to a heap overrun. The issue was reported in the issue tracker as 1811 by Joshua Rogers of AISLE Research Team. CVE-2026-33845 Affected Packages: gnutls Issue Correction: Run dnf update gnutls --releasever...

9.1CVSS5.5AI score0.00805EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.7 views

EulerOS Virtualization 2.10.1 : glib2 (EulerOS-SA-2026-2019)

According to the versions of the glib2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types...

5.4CVSS5.8AI score0.00325EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:35 p.m.10 views

CVE-2026-5503

In TLSXEchChangeSNI, the ctx-extensions branch set extensions unconditionally even when TLSXFind returned NULL. This caused TLSXUseSNI to attach the attacker-controlled publicName to the shared WOLFSSLCTX when no inner SNI was configured. TLSXEchRestoreSNI then failed to clean it up because its...

9.1CVSS5.4AI score0.00393EPSS
Exploits0References1
Rows per page
Query Builder