CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Snyk•added 4 days ago•4 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

8.7CVSS5.3AI score0.00085EPSS

Exploits0References2

NVD•added 4 days ago•9 views

CVE-2026-53689

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfszdrstring in lib/libnfs-zdr.c...

7.1CVSS0.00056EPSS

EUVD•added 4 days ago•5 views

EUVD-2026-36027

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfszdrstring in lib/libnfs-zdr.c...

CVE•added 4 days ago•6 views

CVE-2026-53689

CVE-2026-53689 relates to libnfs up to 6.0.2 (before commit 55c18ea). The issue is that libnfs_zdr_string in lib/libnfs-zdr.c does not validate a string size, causing an integer overflow when connecting to a crafted NFS server. The CVSS data indicates network attacker, high impact to confidential...

Debian CVE•added 4 days ago•3 views

CVE-2026-53689

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfszdrstring in lib/libnfs-zdr.c...

Positive Technologies•added 4 days ago•5 views

Exploits0

PT-2026-48450

libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfs zdr string in lib/libnfs-zdr.c...

SUSE CVE•added 2026/06/07 5:48 a.m.•2 views

Exploits0References2

SUSE CVE-2018-7714

The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service assertion failure because pixels = 130 may be false. Note: “OpenCV CVAssert is not an assertion C-like assert, it is regular C++ exception which can raise...

7.5CVSS7.2AI score0.00409EPSS

SUSE CVE•added 2026/06/06 2:45 a.m.•3 views

SUSE CVE-2026-50262

An out-of-bounds read flaw was found in the X.Org X server and Xwayland in glXDispChangeDrawableAttributes. A wrong size validation check can read a client-controlled number of bytes, exceeding the request buffer, leading to information disclosure. A write path also exists but requires byte-swapp...

RedhatCVE•added 2026/06/05 7:49 p.m.•5 views

CVE-2026-47329

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user and could result in handling of crafted responses...

3.3CVSS5.4AI score0.00027EPSS

RedhatCVE•added 2026/06/05 7:22 p.m.•6 views

CVE-2026-7422

Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validation by spoofing the Ethernet source MAC address to match one of the device's own registered endpoints, because the loopback detection...

7.1CVSS5.5AI score0.00029EPSS

Vulnrichment•added 2026/06/05 10:36 a.m.•5 views

CVE-2026-50262 Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: out-of-bounds read/write in glx changedrawableattributes

EUVD•added 2026/06/05 10:36 a.m.•8 views

Exploits0References5

EUVD-2026-34819

RedhatCVE•added 2026/06/05 10:36 a.m.•5 views

Exploits0References5

CVE-2026-50262

RedhatCVE•added 2026/05/29 12:22 p.m.•11 views

Exploits0References6

CVE-2026-32936

A flaw was found in CoreDNS, a DNS server that chains plugins. A remote, unauthenticated attacker can exploit this vulnerability by repeatedly sending oversized DNS-over-HTTPS DoH GET requests. The GET path, unlike the POST path, lacks size validation before processing large dns= query parameter...

8.7CVSS5.6AI score0.00043EPSS

Exploits1References5

SUSE CVE•added 2026/05/29 1:15 a.m.•8 views

SUSE CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

6.5CVSS5.8AI score0.00016EPSS

Tenable Nessus•added 2026/05/29 12:0 a.m.•14 views

Linux Distros Unpatched Vulnerability : CVE-2026-46169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread...

5.5CVSS5.6AI score0.00016EPSS

ATTACKERKB•added 2026/05/28 6:28 p.m.•6 views

CVE-2026-47332

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in information disclosure from adjacent...

5.5CVSS5.8AI score0.00019EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/28 6:28 p.m.•5 views

CVE-2026-47332 Out-of-bounds read in Ubuntu Linux AppArmor notification handling

5.5CVSS5.8AI score0.00019EPSS