Lucene search
K

606584 matches found

OSV
OSV
added 2026/06/26 4:16 p.m.2 views

DEBIAN-CVE-2026-9639

Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with cancreatestoragevolumes permissions to cause a denial of service via a specially crafted custom-volume backup tarball that omits the expiresat snapshot field...

6.5CVSS5.7AI score0.00376EPSS
Exploits1References1
NVD
NVD
added 2026/06/26 4:16 p.m.7 views

CVE-2026-9639

Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with cancreatestoragevolumes permissions to cause a denial of service via a specially crafted custom-volume backup tarball that omits the expiresat snapshot field...

6.5CVSS0.00376EPSS
Exploits1References3
NVD
NVD
added 2026/06/26 4:16 p.m.7 views

CVE-2023-20572

An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing the input of an arbitrary message, potentially leading to a loss of data integrity...

5.6CVSS0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/26 4:15 p.m.8 views

CVE-2026-52961

A flaw was found in the Linux kernel's Ceph filesystem component. A race condition exists in the cephbuildxattrsblob function where the required extended attribute xattr blob size is computed before the buildxattrs call. During this window, another process can update the xattr blob, leading to a...

5.5CVSS5.7AI score0.00198EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 4:11 p.m.7 views

CVE-2026-53077

A flaw was found in the Linux kernel's Reliable Datagram Sockets over InfiniBand RDS/IB component. This vulnerability allowed the use of RDS/IB in network namespaces other than the initial one, where the existing code would not function correctly. This improper operation could lead to unexpected...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
CVE
CVE
added 2026/06/26 4:11 p.m.8 views

CVE-2025-32394

Technical details are not publicly available in the provided documents. Monitor for updates.

5.3CVSS5.8AI score0.00247EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 4:11 p.m.33 views

CVE-2025-32394 AutoGPT: There is a DoS vulnerability in AITextSummarizerBlock

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in AITextSummarizerBlock. Malicious users can amplify their input. For example, if a malicious user inputs 10K of content, the...

5.3CVSS0.00247EPSS
Exploits0References1
CVE
CVE
added 2026/06/26 4:9 p.m.7 views

CVE-2025-32423

AutoGPT contains a DoS vulnerability in the ExtractTextInformationBlock prior to version 0.6.32. Malicious input amplification can cause a server to consume excessive memory (e.g., 10 KB input leading to ~50 GB memory usage), exhausting resources and causing DoS. The issue is fixed in 0.6.32. Aff...

5.3CVSS5.8AI score0.00247EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 4:9 p.m.6 views

CVE-2025-32423

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in ExtractTextInformationBlock. Malicious users can amplify their input. For example, if a malicious user inputs 10K of content,...

5.3CVSS5.8AI score0.00247EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/26 4:9 p.m.31 views

CVE-2025-32423 AutoGPT: There is a DoS vulnerability in ExtractTextInformationBlock

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in ExtractTextInformationBlock. Malicious users can amplify their input. For example, if a malicious user inputs 10K of content,...

5.3CVSS0.00247EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/26 4:6 p.m.8 views

CVE-2026-53093

A flaw was found in the Linux kernel's Broadcom FullMAC wireless driver brcmfmac. The brcmfchipaddcore function does not properly check for error pointers, leading to a dereference of a possible error pointer. This vulnerability could allow a local attacker to cause a system crash, resulting in a...

5.5CVSS5.7AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 4:6 p.m.9 views

CVE-2026-53086

A flaw was found in the Linux kernel's bcmgenet network driver. This vulnerability arises from an overly aggressive timeout handler that attempts to reset all network transmission queues when only one experiences an issue. This behavior can create race conditions, potentially leading to system...

9.8CVSS5.8AI score0.00386EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 3:55 p.m.8 views

CVE-2026-53069

A flaw was found in the Linux kernel's networking subsystem. This vulnerability, a null-pointer dereference, occurs in the XDP eXpress Data Path redirect mechanism when processing network traffic on a bonding device that has not been fully initialized. An attacker could potentially trigger this...

7.5CVSS5.8AI score0.00385EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 3:50 p.m.7 views

CVE-2026-53038

A flaw was found in the Linux kernel's Integrity Measurement Architecture IMA subsystem. When handling unsupported Trusted Platform Module TPM hash algorithms, the imafs component incorrectly accesses a hash algorithm name array, leading to a read out-of-bounds. This vulnerability could allow a...

5.5CVSS5.7AI score0.00168EPSS
Exploits0References4
CVE
CVE
added 2026/06/26 3:44 p.m.19 views

CVE-2023-20540

CVE-2023-20540 describes a timing discrepancy in the AMD Secure Processor (ASP) that could enable a privileged attacker to brute-force the hash-based MAC, potentially compromising data integrity. Affected component: AMD Secure Processor / ASP in AMD client/server platforms using ASP. Root cause: ...

1.8CVSS5.9AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/26 3:39 p.m.5 views

EUVD-2026-39789

Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with cancreatestoragevolumes permissions to cause a denial of service via a specially crafted custom-volume backup tarball that omits the expiresat snapshot field...

6.5CVSS5.7AI score0.00376EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/06/26 3:39 p.m.4 views

CVE-2026-9639

Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with cancreatestoragevolumes permissions to cause a denial of service via a specially crafted custom-volume backup tarball that omits the expiresat snapshot field...

6.5CVSS5.7AI score0.00376EPSS
Exploits1
CVE
CVE
added 2026/06/26 3:39 p.m.16 views

CVE-2026-9639

CVE-2026-9639 describes a nil-pointer dereference in LXD’s CreateCustomVolumeFromBackup. On Linux, affected versions are up to 6.8 and 5.21. An authenticated user with the ability to can_create_storage_volumes can trigger a denial of service by supplying a specially crafted custom-volume backup t...

6.5CVSS5.7AI score0.00376EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/26 3:35 p.m.7 views

CVE-2026-52974

A flaw was found in the Linux kernel's network Transport Layer Security TLS module. Specifically, a memory leak occurs during the setup of receive offload when a particular function fails. This issue can lead to the gradual consumption of system memory. If exploited repeatedly, this could result ...

7.5CVSS5.8AI score0.00506EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/26 3:32 p.m.6 views

EUVD-2026-39773

An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service DoS via supplying a crafted PSD file...

7.5CVSS6.2AI score0.00571EPSS
Exploits0References3
Rows per page
Query Builder