Lucene search
K

1528 matches found

EUVD
EUVD
added 2026/07/04 12:0 p.m.8 views

EUVD-2026-41670

A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. The impacted element is the function AIAgent.runconversation of the file runagent.py of the component HTTP API. This manipulation of the argument todos causes denial of service. The attack can be initiated remotely. The...

5.3CVSS5.6AI score0.00277EPSS
Exploits0References5
Snyk
Snyk
added 2026/07/04 11:13 a.m.5 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the RRCInactiveTransitionReport function of the NGAP Message Handler component. An attacker can cause a service disruption by sending specially crafted messages remotely. Remediation Upgrade...

5.3CVSS6AI score0.00522EPSS
Exploits0References2
Snyk
Snyk
added 2026/07/04 11:13 a.m.5 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the NGSetupRequest process. An attacker can cause the service to become unavailable by sending specially crafted requests remotely. Remediation Upgrade github.com/omec-project/amf/nas/nassecurity...

5.3CVSS5.9AI score0.00317EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/26 2:10 a.m.7 views

SUSE CVE-2026-53204

In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-rsu: Fix NULL deref on rsusendmsg timeout in probe rsusendmsg can return -ETIMEDOUT when waitforcompletioninterruptibletimeout fires while the SMC call is still pending. In stratix10rsuprobe, the error paths f...

5.8AI score0.00107EPSS
Exploits0References3
Redos
Redos
added 2026/06/26 12:0 a.m.5 views

ROS-20260626-73-0006

The vulnerability related to tempo involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS5.8AI score0.00645EPSS
Exploits0
OSV
OSV
added 2026/06/25 8:39 a.m.4 views

CVE-2026-53204 firmware: stratix10-rsu: Fix NULL deref on rsu_send_msg() timeout in probe

In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-rsu: Fix NULL deref on rsusendmsg timeout in probe rsusendmsg can return -ETIMEDOUT when waitforcompletioninterruptibletimeout fires while the SMC call is still pending. In stratix10rsuprobe, the error paths f...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.14 views

PT-2026-52300

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the stratix10-rsu firmware component during the probe process. When the rsu send msg function returns a timeout error -ETIMEDOUT, certain error paths...

5.5CVSS6.1AI score0.00107EPSS
Exploits0References11
Redos
Redos
added 2026/06/23 12:0 a.m.6 views

ROS-20260623-73-0045

The vulnerability of the bytes.decode function in the CPython interpreter relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9.1CVSS6.2AI score0.00579EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/06/23 12:0 a.m.3 views

The vulnerability of the mbregexuringencoding() function in the PHP interpreter allows a hacker to trigger a service failure.

The vulnerability of the mbregexuringencoding function in the PHP interpreter is related to discrepancies in the lists of encodings between the Oniguruma library and mbfl, as a result of a pointer assignment error. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS5.7AI score0.00202EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/22 12:0 a.m.2 views

Vulnerability of the WebRTC component: The signaling browsers Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allow attackers to cause service failures.

The vulnerability of the WebRTC component: The signaling browsers Mozilla Firefox, Firefox ESR, and the email client Thunderbird are vulnerable to a resource consumption issue that is not controlled. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

7.8CVSS7AI score0.00414EPSS
Exploits0References15Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/06/22 12:0 a.m.4 views

The vulnerability in the Graphics component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to cause a service failure.

The vulnerability of the Graphics component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS5.7AI score0.00433EPSS
Exploits0References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/06/22 12:0 a.m.4 views

The vulnerability in the Graphics component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to cause a service failure.

The vulnerability of the Graphics component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS5.7AI score0.00433EPSS
Exploits0References15Affected Software6
NVD
NVD
added 2026/06/19 3:16 p.m.14 views

CVE-2016-20095

Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files...

8.5CVSS0.00119EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 2:16 p.m.9 views

EUVD-2016-10908

Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files...

8.5CVSS6.2AI score0.00119EPSS
Exploits0References3
OSV
OSV
added 2026/06/17 6:3 p.m.7 views

RLSA-2026:26455 Important: 389-ds-base security, bug fix, and enhancement update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: unbounded LDAP controls count in...

7.5CVSS5.4AI score0.00815EPSS
Exploits0References2
OSV
OSV
added 2026/06/17 6:43 a.m.8 views

MGASA-2026-0217 Updated coturn packages fix security vulnerabilities

CVE-2026-40613 Coturn: Misaligned Memory Access in coturn STUN Attribute Parser Remote DoS on ARM64...

7.5CVSS5.3AI score0.01123EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2026/06/17 12:0 a.m.4 views

The vulnerability of the tcp_write_xmit() function in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the tcpwritexmit function in Linux operating systems is related to the lack of a standardized mechanism for error handling. Exploiting this vulnerability allows an attacker to cause service failures remotely...

7.8CVSS5.7AI score0.00533EPSS
Exploits0References15Affected Software6
Redos
Redos
added 2026/06/15 12:0 a.m.8 views

ROS-20260615-73-0033

The vulnerability of the RDP client FreeRDP is related to the lack of checks for division by zero. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.5CVSS4.7AI score0.00303EPSS
Exploits1
Redos
Redos
added 2026/06/11 12:0 a.m.8 views

ROS-20260611-73-0004

The vulnerability of the RDP client FreeRDP is related to the escape of operations beyond the buffer in memory, due to incorrect encoding based on the Base64 standard. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

9.1CVSS5.8AI score0.00599EPSS
Exploits1
Redos
Redos
added 2026/06/09 12:0 a.m.11 views

ROS-20260609-73-0006

The vulnerability of the jpegimageload function in the image loading library GdkPixbuf is related to the situation where the operation exits the buffer boundaries in memory when processing a specially created JPEG image. Exploiting this vulnerability could allow a malicious actor to cause service...

7.5CVSS5.7AI score0.01069EPSS
Exploits1
Rows per page
Query Builder