Lucene search
K

14815 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-52940

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb,...

5.5CVSS6AI score0.00112EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.14 views

PT-2026-51727

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the batman-adv module where the batadv tvlv container list size function uses a u16 return type and accumulator. When the accumulated size of registered containers...

8.8CVSS5.9AI score0.00247EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-52934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - batman-adv: tvlv: reject oversized TVLV packets batadvtvlvcontainerogmappend builds a TVLV packet section from the tvlv.containerlist. The total size of this...

8.8CVSS6AI score0.00247EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/06/24 12:0 a.m.4 views

The vulnerability of the ssh2_transport_read() function in the libssh2 library, which allows a hacker to execute arbitrary code.

The vulnerability of the ssh2transportread function in the libssh2 library is related to buffer overflows due to integer overflows. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using specially created SSH packets...

10CVSS7.9AI score0.00732EPSS
Exploits11References6Affected Software1
OSV
OSV
added 2026/06/19 5:4 p.m.2 views

OPENSUSE-SU-2026:21104-1 Security update for postgresql16

This update for postgresql16 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. - CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. - CVE-2026-6474: Guard against malicious time zone...

8.8CVSS6.9AI score0.00668EPSS
Exploits0References19
OSV
OSV
added 2026/06/19 5:3 p.m.2 views

OPENSUSE-SU-2026:21103-1 Security update for postgresql15

This update for postgresql15 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. - CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. - CVE-2026-6474: Guard against malicious time zone...

8.8CVSS6.9AI score0.00668EPSS
Exploits0References18
OSV
OSV
added 2026/06/19 4:51 p.m.2 views

OPENSUSE-SU-2026:21102-1 Security update for postgresql14

This update for postgresql14 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. - CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. - CVE-2026-6474: Guard against malicious time zone...

8.8CVSS6.9AI score0.00668EPSS
Exploits0References17
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fixed the Rx DMA data size and skboverpanic issue. The function managetrxbufcfg aligns the DMA data size of the RX buffer to be a multiple of 64. As a result, a packet slightly larger than mtu+14, for example, 1536...

5.5CVSS6.3AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.7 views

Siemens RuggedCom Rox Heap-based Buffer Overflow (CVE-2022-2347)

There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download...

7.7CVSS7.2AI score0.00586EPSS
Exploits1References3
Snyk
Snyk
added 2026/06/17 7:3 p.m.4 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write through the ssh2transportread function in transport.c when processing SSH packets with excessively large packetlength values. An attacker can corrupt heap memory and potentially execute arbitrary code by sending...

9.2CVSS7.7AI score0.00732EPSS
Exploits11References2
RedHat Linux
RedHat Linux
added 2026/06/17 1:20 a.m.7 views

kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets

A flaw was found in the Linux kernel's netfilter component. This vulnerability occurs because the eui64mt6 function, which processes IPv6 packets, does not properly validate the MAC header for all packets. Specifically, packets with a zero fragment offset could bypass an existing guard, allowing...

9.4CVSS5.4AI score0.00337EPSS
Exploits0References5
OSV
OSV
added 2026/06/16 11:6 p.m.2 views

OPENSUSE-SU-2026:20970-1 Security update for postgresql17

This update for postgresql17 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. - CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. - CVE-2026-6474: Guard against malicious time zone...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References22
OSV
OSV
added 2026/06/16 11:5 p.m.2 views

SUSE-SU-2026:22149-1 Security update for postgresql17

This update for postgresql17 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. - CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. - CVE-2026-6474: Guard against malicious time zone...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2026/06/16 7:18 a.m.7 views

wireshark: Heap-based Buffer Overflow in Wireshark

A flaw was found in the RDP protocol dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a heap-based buffer overflow, resulting in a denial of service or potentially in code execution...

7.8CVSS6AI score0.00161EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/06/16 7:18 a.m.6 views

wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark

A flaw was found in the USB HID dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing an excessive consumption of memory, resulting in a denial of service...

7.5CVSS5.1AI score0.00184EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2026/06/16 7:18 a.m.6 views

wireshark: Buffer Over-read in Wireshark

A flaw was found in the RF4CE Profile dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a buffer over-read, resulting in a denial of service...

7.5CVSS5.4AI score0.00157EPSS
Exploits1References6
OSV
OSV
added 2026/06/15 8:16 p.m.6 views

DEBIAN-CVE-2026-52721

Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer boundaries during IPv4/TCP header parsing. This element is primarily used in debugging pipelines, limiting real-world exposure. A local attacker could...

5.3CVSS5.5AI score0.00107EPSS
Exploits0References1
OSV
OSV
added 2026/06/15 1:55 p.m.2 views

OPENSUSE-SU-2026:20985-1 Security update for hostapd

This update for hostapd fixes the following issues: Changes in hostapd: - bsc1268083 - hostapd segmentation fault during fast restart cycles. - CVE-2025-24912: hostapd fails to process crafted RADIUS packets properly bsc1239461...

3.7CVSS5.8AI score0.00716EPSS
Exploits0References3
Redos
Redos
added 2026/06/15 12:0 a.m.9 views

ROS-20260615-73-0041

The vulnerability of the yuvensurebuffer function in the RDP client FreeRDP is related to incorrect calculations of the size of the buffer allocated. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted NAL packets...

7.5CVSS5.7AI score0.00265EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/06/12 9:2 p.m.18 views

ConnectBot SSH Client Library: Unbounded SSH field lengths can cause excessive memory allocation

Summary The SSH protocol parser trusted attacker-controlled length and count fields without first checking that the declared values fit within the containing packet. When a client connects to a malicious or compromised SSH server, the server can send a small, malformed packet containing an inner...

5.5AI score
Exploits0References3Affected Software1
Rows per page
Query Builder