Lucene search
K

254 matches found

Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.7 views

PT-2026-52551

Name of the Vulnerable Software and Affected Versions RTKLIB versions prior to 2.4.4 Description An out-of-bounds read occurs in the getcodepri function when processing unrecognized RINEX observation codes. This happens when crafted RINEX files containing unknown observation types cause negative...

7.1CVSS5.7AI score0.00119EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/06/06 6:43 p.m.16 views

CVE-2026-8714

A denial-of-service vulnerability exists in the RTSP server component of TP-Link Tapo C520WS v2 due to improper handling of syntactically invalid input. Crafted inputs can trigger a processing error, causing the RTSP service to enter non-responsive state. Successful exploitation may cause the RTS...

7.1CVSS5.5AI score0.00206EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-46195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, a...

9.8CVSS6.7AI score0.00675EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an array entry processing error in the reflink cleanup mechanism of ocfs2, potentially leading to...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/14 7:23 a.m.6 views

Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header

A flaw was found in Node.js. A remote attacker can exploit this vulnerability by sending a specially crafted HTTP request that includes a header named proto. When a Node.js application processes this request and attempts to access distinct headers, it encounters an unhandled error, leading to an...

7.5CVSS7.2AI score0.26356EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.11 views

Samsung多款产品 安全漏洞

SAMSUNG Mobile Processors are products of South Korea’s Samsung Corporation. SAMSUNG Mobile Processors are a series of mobile processors. SAMSUNG Wearable Processors are a series of wearable processors. SAMSUNG Modem Exynos is a series of modem chips. Several Samsung products have security...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/26 12:0 a.m.7 views

CVE-2026-29905

Kirby CMS through 5.1.4 allows an authenticated user with 'Editor' permissions to cause a persistent Denial of Service DoS via a malformed image upload. The application fails to properly validate the return value of the PHP getimagesize function. When the system attempts to process this file for...

5.8AI score0.00445EPSS
Exploits1References3
NVD
NVD
added 2026/03/23 7:16 p.m.6 views

CVE-2025-15606

A Denial-of-Service DoS vulnerability in the httpd component of TP-Link's TD-W8961N v4.0 due to improper input sanitization, allows crafted requests to trigger a processing error that causes the httpd service to crash. Successful exploitation may allow the attacker to cause service interruption,...

7.5CVSS0.00292EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/02/20 12:0 a.m.2 views

The vulnerability of the /cgi-bin/DownloadLog file in the Web Management Interface component of the Tenda AC21 microprogramming router allows a hacker to gain unauthorized access to protected information.

The vulnerability of the /cgi-bin/DownloadLog file of the Web Management Interface component of the Tenda AC21 microprogramming system for routers is related to errors in information processing. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access t...

5.3CVSS5.8AI score0.00521EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 11:14 a.m.9 views

CVE-2016-10829

cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form processing error SEC-99...

6.8CVSS7.1AI score0.01029EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 8:20 p.m.3 views

CVE-2025-40760

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly handle error messages and discloses sensitive password hash information when processing user authentication requests. This could allow a local attacker to extract password hashes fo...

6.8CVSS6.2AI score0.00134EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/11/11 8:21 a.m.8 views

kernel: usbnet: ipheth: fix DPE OoB read

In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: fix DPE OoB read Fix an out-of-bounds DPE read, limit the number of processed DPEs to the amount that fits into the fixed-size NDP16 header...

7.1CVSS5.7AI score0.00208EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/05 4:31 p.m.5 views

EUVD-2025-37893

A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause Cisco ISE to restart unexpectedly. This vulnerability is due to a logic error when processing a RADIUS...

8.6CVSS6.2AI score0.00671EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.6 views

Cisco Identity Services Engine (cisco-sa-ise-radsupress-dos-8YF3JThh)

According to its self-reported version, Cisco ISE is affected by a vulnerability. - A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause Cisco ISE to restart...

8.6CVSS7.3AI score0.00671EPSS
Exploits0References3
Veracode
Veracode
added 2025/10/21 8:15 p.m.6 views

Protection Mechanism Failure

picklescan is vulnerable to Protection Mechanism Failure. The vulnerability is due to improper error handling in the ZIP archive scanning component when processing files with a bad Cyclic Redundancy Check CRC, which allows an attacker to craft a malicious ZIP archive that halts the scan and...

9.8CVSS6.9AI score0.01428EPSS
Exploits1References7Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/13 5:29 a.m.4 views

CVE-2025-58298

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...

7.3CVSS6.9AI score0.00084EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/11 9:30 a.m.3 views

EUVD-2025-33830

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...

7.3CVSS6.4AI score0.00084EPSS
Exploits0References3
OSV
OSV
added 2025/10/11 9:15 a.m.3 views

CVE-2025-58298

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...

5.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/10/11 9:15 a.m.4 views

CVE-2025-58298

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...

7.3CVSS0.00084EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/11 9:5 a.m.2 views

CVE-2025-58298

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...

7.3CVSS6.5AI score0.00084EPSS
Exploits0References1
Rows per page
Query Builder