Lucene search
K

5438 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.10 views

CVE-2026-39824

NewNTUnicodeString does not check for string length overflow. When provided with a string that overflows the maximum size of a NTUnicodeString a 16-bit number of bytes, it returns a truncated string rather than an error...

3.3CVSS5.5AI score0.00114EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 1:4 p.m.8 views

BIT-PYTHON-2026-3276 Potential DoS via quadratic complexity in unicodedata.normalize()

unicodedata.normalize can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters with alternating Canonical Combining Class values. This affects all normalization forms...

6.3CVSS5.4AI score0.00492EPSS
Exploits0References10
OSV
OSV
added 2026/06/05 1:4 p.m.14 views

BIT-PYTHON-MIN-2026-3276 Potential DoS via quadratic complexity in unicodedata.normalize()

unicodedata.normalize can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters with alternating Canonical Combining Class values. This affects all normalization forms...

6.3CVSS5.4AI score0.00492EPSS
Exploits0References10
OSV
OSV
added 2026/06/05 12:56 p.m.9 views

BIT-LIBPYTHON-2026-3276 Potential DoS via quadratic complexity in unicodedata.normalize()

unicodedata.normalize can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters with alternating Canonical Combining Class values. This affects all normalization forms...

6.3CVSS5.4AI score0.00492EPSS
Exploits0References10
OSV
OSV
added 2026/06/05 10:41 a.m.4 views

SUSE-SU-2026:22081-1 Security update for perl-XML-LibXML

This update for perl-XML-LibXML fixes the following issue - CVE-2026-8177: read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences bsc1264715...

7.5CVSS5.2AI score0.00531EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 7:16 p.m.19 views

CVE-2025-71316

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...

9.8CVSS0.00384EPSS
Exploits0References5
CVE
CVE
added 2026/06/04 5:39 p.m.25 views

CVE-2025-71316

CVE-2025-71316 affects SQLite sqldiff.exe and is due to insecure handling of Unicode-to-ANSI conversion in the Windows C runtime. An attacker could use the -L option to load an arbitrary DLL by crafting a command line argument string, causing command line file arguments to be misinterpreted as op...

9.8CVSS5.9AI score0.00384EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/06/04 5:39 p.m.8 views

CVE-2025-71316

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...

9.8CVSS5.5AI score0.00384EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/04 5:39 p.m.7 views

CVE-2025-71316

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...

9.8CVSS5.9AI score0.00384EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/04 5:39 p.m.10 views

EUVD-2025-210067

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...

9.8CVSS5.9AI score0.00384EPSS
Exploits0References5
NVD
NVD
added 2026/06/04 5:16 p.m.10 views

CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS0.00196EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 5:16 p.m.12 views

CVE-2026-49942

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

7.3CVSS0.00312EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/04 4:7 p.m.10 views

EUVD-2026-34299

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

7.3CVSS5.8AI score0.00312EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 4:7 p.m.10 views

CVE-2026-49942 Net::CIDR::Set versions through 0.20 for Perl did not validate network masks

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

5.8AI score0.00312EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/04 4:7 p.m.8 views

CVE-2026-49942

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

7.3CVSS5.8AI score0.00312EPSS
Exploits0References4
CVE
CVE
added 2026/06/04 4:7 p.m.33 views

CVE-2026-49942

CVE-2026-49942 affects Net::CIDR::Set for Perl up to version 0.20. The vulnerability stems from improper validation of network masks: the mask portion could contain Unicode digits (e.g., Arabic-Indic One U+0661) or non-digits, which were ignored, potentially allowing larger networks. Leading zero...

7.3CVSS5.8AI score0.00312EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/04 4:7 p.m.37 views

CVE-2026-49942 Net::CIDR::Set versions through 0.20 for Perl did not validate network masks

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

0.00312EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 4:7 p.m.9 views

CVE-2026-49940 Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

5.8AI score0.00196EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 4:7 p.m.25 views

CVE-2026-49940

Net::CIDR::Set for Perl is affected up to version 0.20. The issue arises because non-ASCII IP addresses and netmasks are accepted, with Unicode digits (e.g., Arabic-Indic One U+0661) not parsed as numbers, potentially allowing larger networks than intended. Several connected sources cite upgradin...

6.5CVSS5.8AI score0.00196EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/04 4:7 p.m.10 views

CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.8AI score0.00196EPSS
Exploits0References3
Rows per page
Query Builder