Lucene search
K

189 matches found

Cvelist
Cvelist
added 2026/04/22 8:15 a.m.31 views

CVE-2026-31432 ksmbd: fix OOB write in QUERY_INFO for compound requests

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

8.8CVSS0.00507EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34275

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write exists in ksmbd when processing compound requests, such as READ combined with QUERY INFOSecurity. If the initial command consumes most of the response buffer, ksmb...

8.8CVSS5.9AI score0.00507EPSS
Exploits0References22
UbuntuCve
UbuntuCve
added 2026/04/21 12:0 p.m.9 views

CVE-2026-40706

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

8.4CVSS6AI score0.00165EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/21 12:0 a.m.7 views

EUVD-2026-24467

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

8.4CVSS6AI score0.00165EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/21 12:0 a.m.4 views

CVE-2026-40706

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

8.4CVSS6AI score0.00165EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/21 12:0 a.m.37 views

CVE-2026-40706

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

8.4CVSS0.00165EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.14 views

PT-2026-46979

Name of the Vulnerable Software and Affected Versions 7-Zip versions 9.34 through 26.00 Description An off-by-one heap out-of-bounds read exists in the WIM Windows Imaging archive handler's security descriptor lookup. In the GetSecurity function within CHandler::GetSecurity...

7.1CVSS5.8AI score0.00225EPSS
Exploits1References31
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-40706

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in th...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/21 12:0 a.m.3 views

CVE-2026-40706

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

8.4CVSS5.7AI score0.00165EPSS
Exploits0
EUVD
EUVD
added 2025/12/31 6:30 p.m.4 views

EUVD-2025-206011

An incorrect NULL DACL issue exists in SevenCs ORCA G2 2.0.1.35 EC2007 Kernel v5.22. The regService process, which runs with SYSTEM privileges, applies a Security Descriptor to a device object with no explicitly configured DACL. This condition could allow an attacker to perform unauthorized raw...

6AI score0.0013EPSS
Exploits1References2
CVE
CVE
added 2025/12/31 12:0 a.m.12 views

CVE-2025-64699

CVE-2025-64699 affects SevenCs ORCA G2 2.0.1.35 (EC2007 Kernel v5.22). The regService process, running with SYSTEM privileges, applies a Security Descriptor to a device object that has no explicitly configured DACL. This can allow an attacker to perform unauthorized raw disk operations, potential...

7.8CVSS6.1AI score0.0013EPSS
Exploits1References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/12/31 12:0 a.m.5 views

CVE-2025-64699

An incorrect NULL DACL issue exists in SevenCs ORCA G2 2.0.1.35 EC2007 Kernel v5.22. The regService process, which runs with SYSTEM privileges, applies a Security Descriptor to a device object with no explicitly configured DACL. This condition could allow an attacker to perform unauthorized raw...

6.1AI score0.0013EPSS
Exploits1References1
CVE
CVE
added 2025/12/24 1:5 p.m.12 views

CVE-2022-50737

CVE-2022-50737 relates to the Linux kernel ntfs3 subsystem. The connected materials describe a fix for validating the NTFS security index roots during NTFS security initialization, addressing a use-after-free scenario illustrated by a KASAN report when mounting NTFS. The resolution enforces that ...

5.9AI score0.002EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/11/01 1:2 a.m.4 views

ksmbd: fix out-of-bounds in parse_sec_desc()

...

7.1CVSS8.9AI score0.00193EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-18599

Malware in sbrugna...

7.8CVSS7.5AI score0.00614EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-18597

Malware in sbrugna...

7.8CVSS7.5AI score0.00614EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-14823

Malware in sbrugna...

9.1CVSS9.2AI score0.01052EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4572

Malware in sbrugna...

7.2CVSS6.3AI score0.008EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-21303

Malware in sbrugna...

7CVSS6.7AI score0.00421EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21946

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause...

7.1CVSS6.8AI score0.00193EPSS
Exploits0References2
Rows per page
Query Builder