Lucene search
K

104387 matches found

CVE
CVE
added 10 hours ago8 views

CVE-2026-61861

CVE-2026-61861 affects ImageMagick prior to 7.1.2-26. A use-after-free in the FormatMagickCaption path occurs when memory allocation fails, allowing a dangling pointer to reference freed memory. This can potentially lead to denial of service or code execution. Connected documents confirm the comp...

6.3CVSS6.2AI score
Exploits0References2
EUVD
EUVD
added 10 hours ago7 views

EUVD-2026-43188

ImageMagick before 7.1.2-26 contains a use-after-free vulnerability in the FormatMagickCaption method when memory allocation fails. Attackers can trigger memory allocation failures to cause a dangling pointer to reference freed memory, potentially enabling denial of service or code execution...

6.3CVSS6.2AI score
Exploits0References2
CVE
CVE
added 10 hours ago7 views

CVE-2026-61857

ImageMagick prior to 7.1.2-26 contains a heap use-after-free vulnerability caused by a missing null check when parsing XMP profiles. Attackers can craft specially crafted XMP data in image files to trigger the issue, potentially causing application crashes. The CVE record and CVE list entries con...

6.3CVSS6.1AI score
Exploits0References2
EUVD
EUVD
added 10 hours ago8 views

EUVD-2026-43186

ImageMagick before 7.1.2-26 contains a heap use-after-free vulnerability caused by missing null check when parsing XMP profiles. Attackers can craft malicious image files with specially crafted XMP data to trigger the vulnerability and cause application crashes...

6.3CVSS6.1AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 11 hours ago15 views

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.4CVSS6AI score0.00425EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 14 hours ago5 views

CVE-2026-56373

A flaw was found in ImageMagick. This use-after-free vulnerability CWE-416 exists within the PDB Program Database decoder. A remote attacker could exploit this by tricking a user into processing a specially crafted malicious PDB file. This could lead to a denial of service DoS due to application...

6.3CVSS6.1AI score
Exploits0References5
CVE
CVE
added yesterday6 views

CVE-2026-7639

CVE-2026-7639 affects the GPU DDK driver (PMMETA_PROTECT heap) where a non-privileged user can trigger a sequence of improper GPU system calls and a faulty MMU mapping path, leading to a use-after-free and incomplete cleanup of internal driver state. This may allow future unauthorized access to c...

6.1AI score
Exploits0References1
EUVD
EUVD
added yesterday8 views

EUVD-2026-43037

Software installed and run as a non-privileged user may conduct a sequence of improper GPU system calls causing use after free, which helps in facilitating unprivileged memory access from a shader code. Triggering failure path in the MMU mapping logic by a malicious code could lead to incomplete...

6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-34196

CVE-2026-34196 concerns a GPU driver vulnerability where software run as a non-privileged user can trigger improper GPU system calls, causing an integer overflow that maps two GPU virtual addresses to the same physical address. One mapping can be freed with the physical page, enabling a read/writ...

6.1AI score
Exploits0References1
EUVD
EUVD
added yesterday6 views

EUVD-2026-43032

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an integer overflow and map two GPU virtual addresses to the same physical address. One of these virutal mappings can be freed along with the physical page, allowing for a read/write UAF via the...

6.1AI score
Exploits0References1
NVD
NVD
added yesterday7 views

CVE-2026-56373

ImageMagick before 7.1.2-15 contains a use-after-free vulnerability in the PDB decoder that uses a stale pointer when memory allocation fails. Attackers can trigger this vulnerability by processing malicious PDB files to cause crashes or write a single zero byte to freed memory...

6.3CVSS
Exploits0References2
Debian CVE
Debian CVE
added yesterday4 views

CVE-2026-56373

ImageMagick before 7.1.2-15 contains a use-after-free vulnerability in the PDB decoder that uses a stale pointer when memory allocation fails. Attackers can trigger this vulnerability by processing malicious PDB files to cause crashes or write a single zero byte to freed memory...

6.3CVSS6.1AI score
Exploits0
CVE
CVE
added yesterday6 views

CVE-2026-56373

ImageMagick (before 7.1.2-15) contains a use-after-free vulnerability in the PDB decoder that uses a stale pointer when memory allocation fails. Attackers can trigger crashes or write a single zero byte to freed memory by processing malicious PDB files. The issue is caused by a use-after-free in ...

6.3CVSS6.1AI score
Exploits0References2
Cvelist
Cvelist
added yesterday28 views

CVE-2026-56373 ImageMagick - Use-After-Free Write in PDB Decoder

ImageMagick before 7.1.2-15 contains a use-after-free vulnerability in the PDB decoder that uses a stale pointer when memory allocation fails. Attackers can trigger this vulnerability by processing malicious PDB files to cause crashes or write a single zero byte to freed memory...

6.3CVSS
Exploits0References2
EUVD
EUVD
added yesterday6 views

EUVD-2026-42889

ImageMagick before 7.1.2-15 contains a use-after-free vulnerability in the PDB decoder that uses a stale pointer when memory allocation fails. Attackers can trigger this vulnerability by processing malicious PDB files to cause crashes or write a single zero byte to freed memory...

6.3CVSS6.1AI score
Exploits0References2
RedHat Linux
RedHat Linux
added yesterday8 views

kernel: rtmutex: Use waiter::task instead of current in remove_waiter()

A flaw was found in the Linux kernel. When the kernel's real-time mutex rtmutex component performs a specific operation called 'proxy-lock rollback' during futex requeue, it incorrectly handles task pointers. This can lead to a 'Use-After-Free' UAF vulnerability, where the system attempts to use...

7.8CVSS6.2AI score0.00125EPSS
Exploits5References6
NVD
NVD
added 2 days ago7 views

CVE-2026-15194

A security flaw has been discovered in Open5GS 2.7.7. This affects the function amfcontextfinal of the file src/amf/context.c of the component AMF. Performing a manipulation results in use after free. The attack is only possible with local access. The exploit has been released to the public and m...

4.8CVSS0.00121EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2 days ago3 views

firefox: thunderbird: Use-after-free in the Networking: HTTP component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Networking: HTTP component...

8.8CVSS5.9AI score0.00382EPSS
Exploits0References6
CVE
CVE
added 2 days ago8 views

CVE-2026-15194

Open5GS 2.7.7 has a use-after-free in AMF code via amf_context_final (src/amf/context.c). Exploitation requires local access, and public exploit code exists. Affects AMF component; no other details on vulnerable versions beyond 2.7.7 are provided. The provided documents do not specify a CVSS vect...

4.8CVSS5.6AI score0.00121EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-15194

A security flaw has been discovered in Open5GS 2.7.7. This affects the function amfcontextfinal of the file src/amf/context.c of the component AMF. Performing a manipulation results in use after free. The attack is only possible with local access. The exploit has been released to the public and m...

4.8CVSS5.6AI score0.00121EPSS
Exploits0References6
Rows per page
Query Builder