Lucene search
K

586 matches found

OSV
OSV
added 3 days ago3 views

DEBIAN-CVE-2026-59089

A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table CLUT due to an integer overflow. This occurs when multiplying numcolors and numcluts, both 16-bit unsigned short integers, resulting i...

5.5CVSS6AI score0.00121EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 3 days ago4 views

CVE-2026-59089

A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table CLUT due to an integer overflow. This occurs when multiplying numcolors and numcluts, both 16-bit unsigned short integers, resulting i...

5.5CVSS6AI score0.00121EPSS
Exploits0References4
EUVD
EUVD
added 3 days ago4 views

EUVD-2026-41913

A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table CLUT due to an integer overflow. This occurs when multiplying numcolors and numcluts, both 16-bit unsigned short integers, resulting i...

5.5CVSS6AI score0.00121EPSS
Exploits0References3
CVE
CVE
added 3 days ago16 views

CVE-2026-59089

GIMP contains a vulnerability in its PlayStation TIM loader: the CLUT size is computed by multiplying two 16-bit unsigned values (num_colors and num_cluts), which can overflow and exceed integer limits. This overflow triggers undefined behavior that causes the GIMP plug-in to abort when processin...

5.5CVSS6AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 3 days ago5 views

CVE-2026-59089

A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table CLUT due to an integer overflow. This occurs when multiplying numcolors and numcluts, both 16-bit unsigned short integers, resulting i...

5.5CVSS6AI score0.00121EPSS
Exploits0References4
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-41782

Insertion of Sensitive Information Into Sent Data vulnerability in Tim Strifler Exclusive Addons Elementor allows Retrieve Embedded Sensitive Data. This issue affects Exclusive Addons Elementor: from n/a through 2.7.9.9...

5.3CVSS5.9AI score0.00201EPSS
Exploits0References2
CVE
CVE
added 4 days ago10 views

CVE-2026-59511

The CVE concerns the WordPress plugin “Exclusive Addons for Elementor” (extends Elementor). A vulnerability described as “Insertion of Sensitive Information Into Sent Data” allows retrieval of embedded sensitive data via the affected feature; it affects Exclusive Addons Elementor versions up to 2...

5.3CVSS5.9AI score0.00201EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.16 views

PT-2026-48870

Name of the Vulnerable Software and Affected Versions remotion version 4.0.409 Description A remote code execution RCE issue was discovered, which allows an attacker to execute arbitrary code on the target system. Recommendations At the moment, there is no information about a newer version that...

9.8CVSS6.5AI score0.0081EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.14 views

PT-2026-48871

Name of the Vulnerable Software and Affected Versions remotion version 4.0.409 Description An arbitrary file write issue exists, allowing an attacker to write files to an unintended location on the system. Recommendations At the moment, there is no information about a newer version that contains ...

9.1CVSS6AI score0.00324EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/06/06 6:43 a.m.16 views

CVE-2026-7763

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

9.8CVSS5.9AI score0.00536EPSS
Exploits0References1
NVD
NVD
added 2026/06/05 2:17 a.m.12 views

CVE-2026-7763

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

9.8CVSS0.00536EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/05 1:39 a.m.43 views

CVE-2026-7763 Heap buffer overflow in morse.ko TIM IE processing

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

0.00536EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/05 1:39 a.m.13 views

EUVD-2026-34781

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

9.8CVSS6AI score0.00536EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/05 1:39 a.m.8 views

CVE-2026-7763

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

6AI score0.00536EPSS
Exploits0References2
CVE
CVE
added 2026/06/05 1:39 a.m.25 views

CVE-2026-7763

The CVE-2026-7763 entry details a heap-based buffer overflow in the morse.ko HaLow Wi‑Fi kernel driver (Morse Micro HaLowLink 2) prior to 2.11.13. The flaw occurs in morse_page_slicing_process_tim_element() within page_slicing.c, which derives the TIM bitmap length from a received TIM Information...

9.8CVSS6AI score0.00536EPSS
Exploits0References1
Mageia
Mageia
added 2026/05/07 5:6 a.m.32 views

Updated tcpflow packages fix security vulnerability

tcpflow has TIM Element OOB Write in wifipcap. CVE-2026-25061...

7.5CVSS5.8AI score0.00517EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/20 12:0 a.m.3 views

CVE-2026-26399

A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...

5.8AI score0.00179EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/16 11:28 p.m.6 views

SUSE CVE-2026-40916

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service DoS. By opening a specially crafted TIM image file, the application crashes due to an unconditional overflow when writing to a...

5CVSS6AI score0.0021EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/15 9:30 p.m.5 views

EUVD-2026-23022

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service DoS. By opening a specially crafted TIM image file, the application crashes due to an unconditional overflow when writing to a...

5CVSS6AI score0.0021EPSS
Exploits0References3
OSV
OSV
added 2026/04/15 8:16 p.m.3 views

DEBIAN-CVE-2026-40916

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service DoS. By opening a specially crafted TIM image file, the application crashes due to an unconditional overflow when writing to a...

5.5CVSS5.6AI score0.0021EPSS
Exploits0References1
Rows per page
Query Builder