Lucene search
K

859 matches found

OSV
OSV
added 2026/05/04 1:12 p.m.11 views

JLSEC-2026-394

When curl 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally widen the permissions for the target file, leaving the...

9.8CVSS6.8AI score0.05481EPSS
Exploits1References16
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.30 views

CVE-2026-31512 Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2capecreddatarcv l2capecreddatarcv reads the SDU length field from skb-data using getunalignedle16 without first verifying that skb contains at least...

0.00123EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from l2capecreddatarcv not verifying the PDU length before reading the SDU length, potentially leading...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/07 3:14 p.m.7 views

CVE-2026-35516

LinkAce is a self-hosted archive to collect website links. Prior to 2.5.4, LinkRepository::update and CheckLinksCommand::checkLink do not check for private IPs. An authenticated user can read responses from internal services AWS IMDSv1, cloud metadata, internal APIs by creating a link with a publ...

5CVSS5.9AI score0.00274EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.5 views

PT-2026-30864

LinkAce is a self-hosted archive to collect website links. Prior to 2.5.4, LinkRepository::update and CheckLinksCommand::checkLink do not check for private IPs. An authenticated user can read responses from internal services AWS IMDSv1, cloud metadata, internal APIs by creating a link with a publ...

5CVSS5.9AI score0.00274EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/06 6:33 p.m.6 views

EUVD-2026-19337

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection...

7.6CVSS5.9AI score0.00149EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.25 views

CVE-2026-21381 Buffer Over-read in WLAN Firmware

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection...

7.6CVSS0.00149EPSS
Exploits0References1
CVE
CVE
added 2026/04/06 3:33 p.m.17 views

CVE-2026-21381

CVE-2026-21381 is described in connected records as a buffer over-read in WLAN firmware causing a transient denial-of-service when a service data frame with excessive length is processed during device matching over a neighborhood awareness network protocol. This CVE is associated with WLAN firmwa...

7.6CVSS5.9AI score0.00149EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 3:33 p.m.2 views

CVE-2026-21381 Buffer Over-read in WLAN Firmware

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection...

7.6CVSS5.9AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/06 9:31 a.m.7 views

EUVD-2026-19199

In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ulemandatoryexthandlers and uleoptionalexthandlers tables in handleoneuleextension are declared with 255 elements valid indices 0-254, but the index htype is deriv...

5.7AI score0.0055EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/04/06 7:33 a.m.5 views

CVE-2026-31405

In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ulemandatoryexthandlers and uleoptionalexthandlers tables in handleoneuleextension are declared with 255 elements valid indices 0-254, but the index htype is deriv...

9.8CVSS5.1AI score0.0055EPSS
Exploits0
CVE
CVE
added 2026/04/06 7:33 a.m.49 views

CVE-2026-31405

CVE-2026-31405 : Linux kernel media/dvb-net vulnerability — OOB read in ULE extension header tables due to 255-element lookup arrays; bounds check added for htype to ensure out-of-range SNDU is discarded. This resolves a kernel-wide issue and is reflected in OSV advisories (e.g., Root: Debian 11/...

9.8CVSS5.7AI score0.0055EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.5 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporated in the United States. There are security vulnerabilities in Qualcomm Chipsets, which stem from the reception of service data frames with excessively long lengths during device matching via Neighbor Discovery protocol...

7.6CVSS5.8AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/24 9:31 p.m.8 views

EUVD-2026-15025

An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information via the ostunnel user and GatewayPorts. This could be used to potentially glean information about the underlying system and give an attacker information that could be used...

4.8CVSS5.8AI score0.00247EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.4 views

PT-2026-27518

An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information via the ostunnel user and GatewayPorts. This could be used to potentially glean information about the underlying system and give an attacker information that could be used...

4.8CVSS5.8AI score0.00247EPSS
Exploits0References2
Redos
Redos
added 2026/03/06 12:0 a.m.3 views

ROS-20260306-73-0006

A vulnerability in the kernfsshoulddrainopenfiles function of the kernfs component of the Linux kernel is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker to disclose protected information...

5.5CVSS5.7AI score0.00156EPSS
Exploits0
NVD
NVD
added 2026/02/23 10:16 p.m.5 views

CVE-2025-69247

free5GC go-upf is the User Plane Function UPF implementation for 5G networks that is part of the free5GC project. Versions prior to 1.2.8 have a Heap-based Buffer Overflow CWE-122 vulnerability leading to Denial of Service. Remote attackers can crash the UPF network element by sending a specially...

7.5CVSS0.00528EPSS
Exploits1References4
Redos
Redos
added 2026/01/28 12:0 a.m.6 views

ROS-20260128-73-0026

A vulnerability in the drivers/platform/chrome/crosecchardev.c module of the Linux kernel is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker to disclose protected information...

7.1CVSS5.9AI score0.0017EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38304)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38304 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix NULL pointer deference on...

5.5CVSS5.3AI score0.00145EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/01/20 9:56 p.m.3 views

CVE-2026-21925

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17 and...

4.8CVSS6AI score0.00212EPSS
Exploits0
Rows per page
Query Builder