Lucene search
+L

13392 matches found

CVE
CVE
added 2026/07/01 1:32 p.m.24 views

CVE-2026-53336

CVE-2026-53336 (nvmem: layouts: onie-tlv) : A Linux kernel vulnerability where the nvmem onie-tlv parser could hang when encountering an unknown vendor-specific entry type (example 0x41) in EEPROM. The root cause was an endless loop in the parser. The published fix increments the offset for unkno...

5.8AI score0.00156EPSS
Exploits0References5
OSV
OSV
added 2026/07/01 1:32 p.m.4 views

CVE-2026-53336 nvmem: layouts: onie-tlv: fix hang on unknown types

In the Linux kernel, the following vulnerability has been resolved: nvmem: layouts: onie-tlv: fix hang on unknown types The EEPROM on my board has a vendor specific entry of type 0x41. When stumbling upon that, this driver hangs in an endless loop. Fix it by keep incrementing the offset on unknow...

5.8AI score0.00156EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/07/01 3:35 a.m.4 views

SUSE CVE-2026-13606

unknown...

7.8CVSS5.7AI score
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/07/01 3:15 a.m.7 views

SUSE CVE-2026-54920

unknown...

5.3CVSS5.9AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/07/01 3:15 a.m.6 views

SUSE CVE-2026-55373

unknown...

6.2CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2026/07/01 2:17 a.m.10 views

UBUNTU-CVE-2026-41579

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions prior to 1.3.6, 1.4.0-rc.1, 1.4.0-rc.12, 1.5.0-rc.1, and 1.5.0-rc.1, when setting up the container rootfs, setupPtmx and setupDevSymlinks call os.Remove and os.Symlink with a filepath.Join strin...

3.3CVSS5.9AI score0.00222EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.15 views

PT-2026-55206

Name of the Vulnerable Software and Affected Versions @hey-api/openapi-ts versions prior to 0.97.3 Description An issue exists in the dist/clients/core/params.ts file, which is used as a runtime template in generated SDKs. The buildClientParams function fails to validate unknown keys that start...

4.8CVSS5.4AI score
Exploits0References8
Snyk
Snyk
added 2026/06/30 6:40 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to path and method values taken directly from incoming requests. An attacker can exhaust server memory and trigger an OOM by sending requests with arbitrary URL paths or custom HT...

8.7CVSS6.1AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/30 1:48 a.m.8 views

SUSE CVE-2026-31323

unknown...

4CVSS5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/30 1:44 a.m.26 views

SUSE CVE-2026-48802

unknown...

7.5CVSS5.7AI score
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/30 1:44 a.m.9 views

SUSE CVE-2026-48804

unknown...

7.5CVSS5.7AI score
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/30 1:42 a.m.28 views

SUSE CVE-2026-55371

unknown...

6.2CVSS5.7AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-56788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing attacker...

7.1CVSS6AI score0.00119EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/29 8:30 a.m.41 views

CVE-2026-13551 itsourcecode Baptism Information Management System editBaptism.php sql injection

A security vulnerability has been detected in itsourcecode Baptism Information Management System 1.0. This affects an unknown function of the file /editBaptism.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

7.5CVSS0.00263EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 8:15 a.m.8 views

EUVD-2026-40055

A weakness has been identified in itsourcecode Baptism Information Management System 1.0. The impacted element is an unknown function of the file /delbaptism.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been mad...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 6:45 a.m.8 views

CVE-2026-13544

A flaw has been found in Feehi CMS up to 2.1.1. Affected by this issue is some unknown functionality of the file /api/users of the component API. This manipulation causes improper access controls. The attack can be initiated remotely. The exploit has been published and may be used. The project wa...

6.5CVSS6.2AI score0.00214EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2026/06/29 6:16 a.m.11 views

CVE-2026-13537

A vulnerability was found in CodeAstro Human Resource Management System 1.0. Impacted is an unknown function. The manipulation results in cross-site request forgery. The attack may be launched remotely. The exploit has been made public and could be used...

5.3CVSS0.00162EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 5:0 a.m.11 views

CVE-2026-13537

A vulnerability was found in CodeAstro Human Resource Management System 1.0. Impacted is an unknown function. The manipulation results in cross-site request forgery. The attack may be launched remotely. The exploit has been made public and could be used...

5.3CVSS5.4AI score0.00162EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/29 4:49 a.m.9 views

CVE-2026-54270

A flaw was found in protobufjs. This library compiles protobuf definitions into JavaScript JS functions. A remote attacker could send a specially crafted protobuf payload containing numerous unknown fields. This could cause the decoded message to retain substantially more memory than expected,...

5.3CVSS5.8AI score0.00293EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/28 1:0 p.m.9 views

EUVD-2026-39996

A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the file /forgotpassword.php of the component POST Parameter Handler. Such manipulation of the argument email leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
Rows per page
Query Builder