Lucene search
+L

22 matches found

cvelist
cvelist
added 6 days ago33 views

CVE-2026-55782 NanaZip: Unbounded memory allocation (DoS) in NanaZip WebAssembly parser via attacker-controlled section/name length fields

NanaZip is the 7-Zip derivative intended for the modern Windows experience. Prior to 6.5.1749.0, NanaZip's WebAssembly archive handler in NanaZip.Codecs.Archive.WebAssembly.cpp allocates buffers from attacker-controlled 32-bit section and custom-name length fields without validating them against...

2.4CVSS0.00113EPSS
Exploits0References5
cve
cve
added 6 days ago9 views

CVE-2026-55782

NanaZip (a 7-Zip derivative) is affected by an unbounded memory allocation vulnerability in its WebAssembly archive handler (NanaZip.Codecs.Archive.WebAssembly.cpp). The issue arises when buffers are allocated from attacker-controlled 32-bit section and custom-name length fields without cross-che...

2.4CVSS6.1AI score0.00113EPSS
Exploits0References5
osv
osv
added 6 days ago3 views

CVE-2026-55782 NanaZip: Unbounded memory allocation (DoS) in NanaZip WebAssembly parser via attacker-controlled section/name length fields

NanaZip is the 7-Zip derivative intended for the modern Windows experience. Prior to 6.5.1749.0, NanaZip's WebAssembly archive handler in NanaZip.Codecs.Archive.WebAssembly.cpp allocates buffers from attacker-controlled 32-bit section and custom-name length fields without validating them against...

2.4CVSS6.1AI score0.00113EPSS
Exploits0References7
astralinux
astralinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: Do not exceed the ARM processor CPER record buffer. There is a logic within GHES/CPER that detects whether the sectionlength is too small, but it does not detect whether it is too large. Currently, if the firmware...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References2
snyk
snyk
added 2026/06/03 6:26 p.m.6 views

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound in the DecodeFromBytes function. An attacker can trigger a nil pointer dereference and panic by supplying a malicious BGP UPDATE message with a declared section length shorter than the actual data...

8.7CVSS5.5AI score0.00279EPSS
Exploits0References2
susecve
susecve
added 2026/05/07 2:16 a.m.10 views

SUSE CVE-2026-43266

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References3
euvd
euvd
added 2026/05/06 12:30 p.m.17 views

EUVD-2026-27665

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

5.8AI score0.00119EPSS
Exploits0References9
nvd
nvd
added 2026/05/06 12:16 p.m.30 views

CVE-2026-43266

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

5.5CVSS0.00119EPSS
Exploits0References8
nvd
nvd
added 2026/05/06 12:16 p.m.11 views

CVE-2026-43171

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cperprintfwerr doesn't check if the error record length is big enough to handle offset. On a bad firmware, if the ofset is above the actual record, length -= offs...

5.5CVSS0.00123EPSS
Exploits0References8
cve
cve
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43266

The CVE-2026-43266 issue affects the Linux kernel’s ARM CPER/APEI handling: a CPER record with an oversized section_length can cause the kernel to read beyond the intended firmware buffer, leading to a large data dump and potential memory access issues. The fix adds a guard so the kernel stops at...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/05/06 11:28 a.m.48 views

CVE-2026-43266 EFI/CPER: don't go past the ARM processor CPER record buffer

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

0.00119EPSS
Exploits0References8
attackerkb
attackerkb
added 2026/05/06 11:28 a.m.9 views

CVE-2026-43266

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

5.8AI score0.00119EPSS
Exploits0References9Affected Software1
osv
osv
added 2026/05/06 11:28 a.m.1 views

CVE-2026-43266 EFI/CPER: don't go past the ARM processor CPER record buffer

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References11
redhatcve
redhatcve
added 2026/01/09 9:1 a.m.10 views

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section length...

8.2CVSS6.9AI score0.00243EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.12 views

EUVD-2019-11886

Malware in sbrugna...

10CVSS9.5AI score0.00988EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-47961

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00243EPSS
Exploits0References1
nvd
nvd
added 2024/06/03 10:15 a.m.22 views

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section length...

8.2CVSS8.1AI score0.00243EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/06/03 10:5 a.m.14 views

CVE-2023-43555 Buffer Over-read in Video

Information disclosure in Video while parsing mp2 clip with invalid section length...

8.2CVSS6.8AI score0.00243EPSS
Exploits0References1
cvelist
cvelist
added 2024/06/03 10:5 a.m.23 views

CVE-2023-43555 Buffer Over-read in Video

Information disclosure in Video while parsing mp2 clip with invalid section length...

8.2CVSS8.1AI score0.00243EPSS
Exploits0References1
github
github
added 2022/07/06 7:26 p.m.30 views

Malformed CAR panics and excessive memory usage

Impact Versions impacted = [email protected] = [email protected] Description of user-facing changes...

0.9AI score
Exploits0References3Affected Software2
Rows per page
Query Builder