Lucene search
K

4928 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in cups

The vulnerability of the cupsSNMPStringToOID function in the CUPS printing server is related to the escape from the global buffer. Exploiting this vulnerability allows an attacker to access confidential data and also cause service failures...

7.7CVSS5.8AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in libxml2

The vulnerability of the xmlMemStrdup function in the Libxml2 library is related to pointer manipulation errors. Exploiting this vulnerability allows an attacker to cause a service failure...

5.5CVSS5.8AI score
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in coreutils

The vulnerability of the GNU Core Utilities basic utility package relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service failures...

8.8CVSS6.1AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2026/05/20 12:0 a.m.3 views

The vulnerabilities of the negotiation mechanisms for SSL and GSS in the PostgreSQL database management system allow attackers to induce service failures.

The vulnerability of the negotiation mechanisms for SSL and GSS in the PostgreSQL database management system is related to an uncontrolled recursion. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service interruptions...

7.8CVSS6AI score0.00471EPSS
Exploits0References13Affected Software8
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.16 views

PT-2026-42219

NVIDIA DGX OS contains a vulnerability in the factory provisioning process, where the cloning of a base image causes identical SSH host keys to be deployed across multiple systems. The sharing of cryptographic identifiers across all similarly provisioned systems enables host impersonation or...

8.1CVSS5.8AI score0.00586EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/05/18 12:0 a.m.4 views

The vulnerability of the ngx_quic_module module in NGINX Plus and NGINX Open Source web servers allows a attacker to cause a service failure.

The vulnerability of the ngxquicmodule module in NGINX Plus and NGINX Open Source web servers relates to the bypassing of authentication processes through spoofing. Exploiting this vulnerability can allow a malicious actor to cause service failures...

6.5CVSS5.9AI score0.00367EPSS
Exploits0References6Affected Software12
RedhatCVE
RedhatCVE
added 2026/05/13 2:22 p.m.8 views

CVE-2026-31243

The mem0 1.0.0 server lacks authentication and authorization controls for its memory reset and table re-creation functionality accessible via the DELETE /memories endpoint. An unauthenticated attacker can send a DELETE request that triggers a reset operation, leading to the execution of a CREATE...

6.5CVSS6AI score0.00374EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2026/05/13 12:0 a.m.4 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to access confidential data or cause a service failure

The vulnerability of the console-based graphic editor ImageMagick is related to the execution of operations beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to access confidential data or cause service interruptions...

6.5CVSS7.2AI score0.00348EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2026/05/13 12:0 a.m.3 views

The vulnerability of the h.265 Libde265 codec implementation allows a hacker to trigger a service failure.

The vulnerability of the h.265 Libde265 implementation lies in the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.2CVSS6.5AI score0.00159EPSS
Exploits1References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/05/13 12:0 a.m.3 views

The vulnerability of the MSLEndElement() function in the coders/msl.c component of the ImageMagick console graphics editor allows a hacker to cause a service failure.

The vulnerability of the MSLEndElement function in the ImageMagick console graphics editor’s coders/msl.c component is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.5AI score0.0043EPSS
Exploits1References11Affected Software7
NVD
NVD
added 2026/05/12 6:16 p.m.8 views

CVE-2026-31243

The mem0 1.0.0 server lacks authentication and authorization controls for its memory reset and table re-creation functionality accessible via the DELETE /memories endpoint. An unauthenticated attacker can send a DELETE request that triggers a reset operation, leading to the execution of a CREATE...

6.5CVSS0.00374EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Intel QAT software drivers for Windows 代码问题漏洞

Intel QAT software drivers for Windows are a set of encryption and compression hardware acceleration drivers for the Windows platform developed by Intel Corporation. There are code-related vulnerabilities in Intel QAT software drivers for Windows versions prior to 2.6.0. These vulnerabilities ste...

6.8CVSS5.8AI score0.00098EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 12:0 a.m.34 views

CVE-2026-31216

The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. The DELETE /storage/objectname:path endpoint lacks authentication, authorization, and input validation mechanisms. Unauthenticated remote attackers can send craft...

0.00401EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/05/12 12:0 a.m.2 views

The vulnerability of the RxRPC module in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the RxRPC module in the Linux operating system’s kernel arises due to improper handling of fragmented packages and mechanisms for copying data into socket buffers. Exploiting this vulnerability allows an attacker to cause service failures...

7.8CVSS7.3AI score0.92766EPSS
Exploits20References17Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/05/12 12:0 a.m.3 views

Vim text editor’s `:find` function vulnerability, allowing a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the :find function in the text editor Vim is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause service interruptions...

7.8CVSS6.3AI score0.00917EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2026/05/12 12:0 a.m.34 views

CVE-2026-31243

The mem0 1.0.0 server lacks authentication and authorization controls for its memory reset and table re-creation functionality accessible via the DELETE /memories endpoint. An unauthenticated attacker can send a DELETE request that triggers a reset operation, leading to the execution of a CREATE...

0.00374EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 12:0 a.m.19 views

CVE-2026-31243

The CVE-2026-31243 entry concerns the mem0 1.0.0 server, where the DELETE /memories endpoint lacks authentication/authorization controls. An unauthenticated attacker can trigger a memory reset that executes a CREATE TABLE SQL statement, potentially re-creating or altering schemas, causing data lo...

6.5CVSS6AI score0.00374EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

vLLM 输入验证错误漏洞

vLLM is an open-source inference and service engine designed for LLM models, featuring high throughput and efficient memory usage. Versions of vLLM prior to 0.6.1 to 0.20.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from token injection issues during...

7.5CVSS5.8AI score0.00414EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/11 3:32 p.m.10 views

EUVD-2026-29053

A security flaw has been discovered in Open5GS up to 2.7.7. This issue affects the function smfnsmfhandleupdatedatainvsmf of the file /src/smf/nsmf-handler.c of the component SMF. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been released to...

5.3CVSS5.5AI score0.00372EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.10 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017694)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017694 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.23 and prior. Easily exploitable...

4.9CVSS6.7AI score0.01338EPSS
Exploits0References4
Rows per page
Query Builder