Lucene search
K

11951 matches found

CVE
CVE
added 2026/03/17 2:28 a.m.64 views

CVE-2026-0708

CVE-2026-0708 (Libucl) describes a denial-of-service in libucl caused by a crafted UCL input containing a key with an embedded null byte. This can trigger a segmentation fault in ucl_object_emit during parsing/emitting, leading to DoS on affected systems. The CVSS base score is 8.3 ( HIGH ) with ...

8.3CVSS5.8AI score0.00387EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.21 views

PT-2026-25869

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the ucl object emit function when parsing and emitting the...

8.3CVSS5.8AI score0.00387EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.5 views

PT-2026-26093

Name of the Vulnerable Software and Affected Versions UltraJSON versions 5.10 through 5.11.0 Description UltraJSON, a fast JSON encoder and decoder written in C, is susceptible to a buffer overflow or infinite loop when processing large indent values. Specifically, the ujson.dumps function can...

7.8CVSS6AI score0.00469EPSS
Exploits1References29
Packet Storm News
Packet Storm News
added 2026/03/17 12:0 a.m.20 views

Poisoning the Pixels: Revisiting Backdoor Attacks on Semantic Segmentation

Semantic segmentation models are widely deployed in safety-critical applications such as autonomous driving, yet their vulnerability to backdoor attacks remains largely underexplored. Prior segmentation backdoor studies transfer threat settings from existing image classification tasks, focusing...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/15 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: avahi (UTSA-2026-006163)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006163 advisory. Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 and below, avahi-daemon can be crashe...

6.5CVSS5.8AI score0.00252EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/13 1:15 p.m.5 views

SUSE CVE-2026-32249

Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range e.g. 0-0\u05bb, incorrectly emits the composing bytes of that character as separate NFA...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-32249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combini...

5.5CVSS6AI score0.00133EPSS
Exploits0References3
OSV
OSV
added 2026/03/12 8:30 p.m.3 views

GHSA-J96M-MJP6-99XR ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS

Summary Specially crafted SVG file make segmentation fault and generate trash files in "/tmp", possible to leverage DoS. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara Tested ImageMagick version 6.9.11-60, 7.1.0-62 Details A specially created SV...

5.5CVSS5.8AI score0.00865EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/03/12 8:30 p.m.7 views

ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS

Summary Specially crafted SVG file make segmentation fault and generate trash files in "/tmp", possible to leverage DoS. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara Tested ImageMagick version 6.9.11-60, 7.1.0-62 Details A specially created SV...

5.5CVSS5.8AI score0.00865EPSS
Exploits1References6Affected Software19
EUVD
EUVD
added 2026/03/12 8:30 p.m.3 views

EUVD-2023-23554

ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS...

5.5CVSS6.4AI score0.00865EPSS
Exploits1References6
OSV
OSV
added 2026/03/12 8:16 p.m.4 views

DEBIAN-CVE-2026-32249

Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range e.g. 0-0\u05bb, incorrectly emits the composing bytes of that character as separate NFA...

5.5CVSS5.6AI score0.00133EPSS
Exploits0References1
OSV
OSV
added 2026/03/12 8:16 p.m.4 views

UBUNTU-CVE-2026-32249

Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range e.g. 0-0\u05bb, incorrectly emits the composing bytes of that character as separate NFA...

5.5CVSS6.1AI score0.00133EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/12 7:17 p.m.7 views

CVE-2026-32249

Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range e.g. 0-0\u05bb, incorrectly emits the composing bytes of that character as separate NFA...

5.3CVSS5.8AI score0.00133EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/03/12 7:17 p.m.5 views

CVE-2026-32249

Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containing a combining character as the endpoint of a character range e.g. 0-0\u05bb, incorrectly emits the composing bytes of that character as separate NFA...

5.5CVSS5.6AI score0.00133EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/11 4:25 p.m.3 views

SUSE CVE-2025-69649

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...

7.5CVSS5.8AI score0.00256EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2026/03/11 8:2 a.m.9 views

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a segmentation fault (SIGSEGV) and abrupt termination. No evidence of memory corruption beyond the null pointer dereference, nor any possibility of code execution, was observed.

...

7.5CVSS5.8AI score0.00256EPSS
Exploits1
NVD
NVD
added 2026/03/10 6:18 p.m.2 views

CVE-2026-31793

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault due to invalid/wild pointer read in CIccCalculatorFunc::ApplySequence causing denial of service. This vulnerability is fixed in 2.3.1.5...

5.5CVSS0.00152EPSS
Exploits0References4
OSV
OSV
added 2026/03/10 6:2 p.m.7 views

CVE-2026-31794 iccDEV has a SEGV in CIccCLUT::Interp3d()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

5.5CVSS5.8AI score0.00152EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/10 6:2 p.m.29 views

CVE-2026-31794 iccDEV has a SEGV in CIccCLUT::Interp3d()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

5.5CVSS0.00152EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/10 6:1 p.m.25 views

CVE-2026-31793 iccDEV has a SEGV in CIccCalculatorFunc::ApplySequence()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault due to invalid/wild pointer read in CIccCalculatorFunc::ApplySequence causing denial of service. This vulnerability is fixed in 2.3.1.5...

5.5CVSS0.00152EPSS
Exploits0References4
Rows per page
Query Builder