Lucene search
K

11953 matches found

OSV
OSV
added 2026/01/18 9:15 a.m.7 views

AZL-74790 CVE-2025-15536 affecting package opencc 1.1.1-3

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.5CVSS5.8AI score0.0023EPSS
Exploits1References1
OSV
OSV
added 2026/01/18 9:15 a.m.3 views

CVE-2025-15536

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.5CVSS5.8AI score
Exploits0References8
OSV
OSV
added 2026/01/18 9:15 a.m.1 views

DEBIAN-CVE-2025-15536

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.5CVSS5.6AI score0.0023EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/01/18 9:2 a.m.2 views

CVE-2025-15536 BYVoid OpenCC MaxMatchSegmentation.cpp MaxMatchSegmentation heap-based overflow

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.3CVSS5.8AI score0.0023EPSS
Exploits1References8
Cvelist
Cvelist
added 2026/01/18 9:2 a.m.21 views

CVE-2025-15536 BYVoid OpenCC MaxMatchSegmentation.cpp MaxMatchSegmentation heap-based overflow

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.3CVSS0.0023EPSS
Exploits1References8
CVE
CVE
added 2026/01/18 9:2 a.m.26 views

CVE-2025-15536

CVE-2025-15536 concerns BYVoid OpenCC up to version 1.1.9. The vulnerability affects the function opencc::MaxMatchSegmentation in src/MaxMatchSegmentation.cpp, causing a heap-based buffer overflow. The attack is local and public exploit is available. Publicly documented fixes reference a patch id...

5.5CVSS6.3AI score0.0023EPSS
Exploits1References8Affected Software1
AlpineLinux
AlpineLinux
added 2026/01/18 9:2 a.m.3 views

CVE-2025-15536

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made...

5.5CVSS5.9AI score0.0023EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/01/18 12:0 a.m.6 views

Open Chinese Convert security vulnerability

Open Chinese Convert is a conversion software for traditional Chinese and Simplified Chinese developed by Carbo Kuo. Versions of BYVoid OpenCC 1.1.9 and earlier contained security vulnerabilities. These vulnerabilities stemmed from a heap buffer overflow in the opencc::MaxMatchSegmentation functi...

5.5CVSS6.2AI score0.0023EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : firefox-60.1.0-5.0.1.el7 (AXSA:2018-3259:05)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2018-3259:05 advisory. Mozilla: Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, and Firefox ESR 52.9 CVE-2018-5188 Mozilla: Buffer overflow using computed size o...

9.8CVSS7.7AI score0.07666EPSS
Exploits2References12
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : [security - medium] qt5 (AXSA:2019-4200:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4200:01 advisory. qt5-qtbase: Double free in QXmlStreamReader CVE-2018-15518 qt5-qtsvg: Invalid parsing of malformed url reference resulting in a denial of service...

9.8CVSS6.7AI score0.03382EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : nss-softokn-3.44.0-8.el7, nss-util-3.44.0-4.el7, nss-3.44.0-7.el7 (AXSA:2019-4421:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4421:01 advisory. nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSCEncryptUpdate CVE-2019-11745 nss: Empty or malformed...

8.8CVSS7.6AI score0.02994EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : elfutils-0.176-2.el7 (AXSA:2019-3992:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3992:02 advisory. elfutils: Heap-based buffer over-read in libdw/dwarfgetaranges.c:dwarfgetaranges via crafted file CVE-2018-16062 elfutils: Double-free due to double...

9.8CVSS6.6AI score0.03691EPSS
Exploits9References11
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : httpd-2.2.15-60.4.0.1.AXS4 (AXSA:2017-1742:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1742:03 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2016-8743 RESERVED This candidate ha...

7.5CVSS6.3AI score0.13252EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.8 views

MiracleLinux 3 : ruby-1.8.5-27.AXS3 (AXSA:2013-43:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-43:01 advisory. Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system...

5CVSS7.9AI score0.02204EPSS
Exploits1References3
NVD
NVD
added 2026/01/15 3:15 p.m.10 views

CVE-2026-0990

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS0.00725EPSS
Exploits1References4
OSV
OSV
added 2026/01/15 3:15 p.m.0 views

UBUNTU-CVE-2026-0990

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS5.8AI score0.00725EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/15 12:6 p.m.3 views

CVE-2026-0976 Org.keycloak/keycloak-quarkus-server: keycloak: proxy bypass due to improper handling of matrix parameters in url paths

A flaw was found in Keycloak. This improper input validation vulnerability occurs because Keycloak accepts RFC-compliant matrix parameters in URL path segments, while common reverse proxy configurations may ignore or mishandle them. A remote attacker can craft requests to mask path segments,...

3.7CVSS6.2AI score0.00354EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/13 10:55 p.m.5 views

CVE-2026-22693

A null pointer dereference vector has been discovered in the harfbuzz package. A null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh:1672-1673. The function fails to check if hbmalloc returns NULL before using placement ne...

5.3CVSS5.1AI score0.00377EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/01/13 12:24 a.m.5 views

SUSE CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS7.1AI score0.00377EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 7 : poppler-0.26.5-43.1.0.2.el7.AXS7 (AXSA:2025-11446:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11446:01 advisory. CVE-2025-32365: fix segmentation fault due to an invalid memory read, occurring in JBIG2Bitmap::combine CVEs: CVE-2025-32365 Poppler before 25.04.0 allows...

7.1CVSS6.3AI score0.00218EPSS
Exploits1References2
Rows per page
Query Builder