Lucene search
K

23997 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017595 advisory. In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet,...

7.5CVSS5.8AI score0.64147EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-4891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

7.5CVSS5.5AI score0.05729EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2026/05/10 10:56 p.m.10 views

Advisory ROSA-SA-2026-3268

software: kernel-5.10 5.10.244 WASP: ROSA-CHROME unaffected versions = kernel-5.10-5.10.244-3 affected versions kernel-5.10-5.10.244-3 CVE-ID: CVE-2026-43284 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Linux kernel xfrm subsystem ESP allows data decryption over non-packet skb...

8.8CVSS6AI score0.93235EPSS
Exploits31
Microsoft CVE
Microsoft CVE
added 2026/05/10 8:1 a.m.11 views

PgBouncer integer overflow in PgBouncer network packet parsing

...

7.5CVSS5.8AI score0.00698EPSS
Exploits1
OSV
OSV
added 2026/05/10 2:43 a.m.8 views

MGASA-2026-0126 Updated openvpn packages fix security vulnerabilities

CVE-2026-35058 - fix server ASSERT on receiving a suitably malformed packet with a valid tls-crypt-v2 key CVE-2026-40215 - fix race condition in TLS handshake that could lead to leaking of packet data from a previous handshake under specific circumstances...

6.9CVSS5.8AI score0.00317EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2026/05/10 12:0 a.m.22 views

Unbreakable Enterprise kernel security update

6.12.0-202.76.4.1 - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present Hyunwoo Kim Orabug: 39344513 CVE-2026-43500 - rxrpc: Fix conn-level packet handling to unshare RESPONSE packets David Howells Orabug: 39344513 - rxrpc: only handle RESPONSE during service challenge Wang Jie...

9.8CVSS6.4AI score0.96775EPSS
Exploits259
OSV
OSV
added 2026/05/09 12:32 p.m.11 views

OESA-2026-2234 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing struct bpfplt contains a u64 target field. Currently, the BPF JIT allocator requests ...

8.8CVSS5.8AI score0.00469EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2026/05/09 8:2 a.m.11 views

bpf: Properly mark live registers for indirect jumps

...

7.8CVSS5.8AI score0.00121EPSS
Exploits0
NVD
NVD
added 2026/05/09 1:16 a.m.25 views

CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS0.00698EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/05/09 1:16 a.m.8 views

CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References2
OSV
OSV
added 2026/05/09 1:16 a.m.10 views

UBUNTU-CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References3
EUVD
EUVD
added 2026/05/09 12:43 a.m.16 views

EUVD-2026-28876

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References1
CVE
CVE
added 2026/05/09 12:43 a.m.32 views

CVE-2026-6664

CVE-2026-6664 affects PgBouncer prior to 1.25.2, where an integer overflow in the network packet parsing code bypasses a boundary check and can crash the process. An unauthenticated remote attacker can crash PgBouncer by sending a malformed SCRAM authentication packet. The issue affects vulnerabl...

7.5CVSS6AI score0.00698EPSS
In wildExploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/09 12:43 a.m.6 views

CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/05/09 12:43 a.m.9 views

CVE-2026-6664 PgBouncer integer overflow in PgBouncer network packet parsing

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/09 12:43 a.m.62 views

CVE-2026-6664 PgBouncer integer overflow in PgBouncer network packet parsing

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS0.00698EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/05/09 12:43 a.m.8 views

CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/05/09 12:0 a.m.15 views

PT-2026-39700

Name of the Vulnerable Software and Affected Versions dnsmasq affected versions not specified Description A heap-based out-of-bounds write in the DHCPv6 implementation allows local attackers to execute arbitrary code with root privileges by sending a crafted DHCPv6 packet. A heap-based...

8.4CVSS6.3AI score0.06662EPSS
Exploits3References85
CNNVD
CNNVD
added 2026/05/09 12:0 a.m.8 views

PgBouncer 输入验证错误漏洞

PgBouncer is an open-source, lightweight connection pool for PostgreSQL developed by the PgBouncer community. Prior to PgBouncer 1.25.2, there was a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows in the network packet parsing code, which allowe...

7.5CVSS5.8AI score0.00698EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/09 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-6664

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote...

7.5CVSS6AI score0.00698EPSS
Exploits1References3
Rows per page
Query Builder