Lucene search
K

82 matches found

CVE
CVE
added 2026/03/23 11:29 p.m.20 views

CVE-2026-33176

CVE-2026-33176 — Active Support (Rails) number helpers incorrectly accept strings containing scientific notation (e.g., 1e10000). When expanded by BigDecimal, this can trigger extremely large decimal representations, leading to excessive memory and CPU usage and a potential DoS. The patch is incl...

8.7CVSS5.8AI score0.0061EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/03/20 4:22 p.m.39 views

CVE-2025-62843

CVE-2025-62843 affects QHora/QuRouter where an improper restriction of a communication channel to intended endpoints allows a user with physical access to gain privileges intended for the original endpoint. The issue is fixed in QuRouter 2.6.3.009 and later. The CVSS-like metrics indicate physica...

6.8CVSS5.8AI score0.00281EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/03/13 5:28 p.m.6 views

CVE-2026-29775 FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP's bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server can send a CACHEBITMAPORDER Rev1 with cacheId equal to...

5.3CVSS5.9AI score0.00309EPSS
Exploits1References4
NVD
NVD
added 2026/03/12 8:16 p.m.6 views

CVE-2026-32240

Cap'n Proto is a data interchange format and capability-based RPC system. Prior to 1.4.0, when using Transfer-Encoding: chunked, if a chunk's size parsed to a value of 2^64 or larger, it would be truncated to a 64-bit integer. In theory, this bug could enable HTTP request/response smuggling. This...

6.5CVSS0.00207EPSS
Exploits0References5
OSV
OSV
added 2026/03/12 7:38 p.m.5 views

CVE-2026-32259 ImageMagick has a possible stack buffer overflow in sixel encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, when a memory allocation fails in the sixel encoder it would be possible to write past the end of a buffer on the stack. This vulnerability is fixed in 7.1.2-16 and...

6.7CVSS6AI score0.00096EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/10 5:37 p.m.5 views

CVE-2026-3854 Remote code execution via git push option injection in GitHub Enterprise Server

An improper neutralization of special elements vulnerability was identified in GitHub Enterprise Server that allowed an attacker with push access to a repository to achieve remote code execution on the instance. During a git push operation, user-supplied push option values were not properly...

8.7CVSS6.4AI score0.24462EPSS
Exploits5References6
ATTACKERKB
ATTACKERKB
added 2026/02/27 9:54 p.m.18 views

CVE-2026-28417

Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL e.g., using the scp:// protocol handler, an attacker can execute arbitrary shell command...

7.8CVSS6.1AI score0.01162EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/02/20 11:16 p.m.12 views

CVE-2026-27133

Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configurations. From 0.47.0 to before 0.50.1, when a chain consisting of multiple CA Certificate Authority certificates is used in the trusted certificates configuration of a Kafka Connect opera...

5.9CVSS0.00184EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/19 7:43 p.m.7 views

CVE-2026-26280 Systeminformation has a Command Injection via unsanitized interface parameter in wifi.js retry path

systeminformation is a System and OS information library for node.js. In versions prior to 5.30.8, a command injection vulnerability in the wifiNetworks function allows an attacker to execute arbitrary OS commands via an unsanitized network interface parameter in the retry code path. In...

8.4CVSS6.4AI score0.01233EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/02/12 1:43 p.m.5 views

CVE-2025-57713

A weak authentication vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to gain sensitive information. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5166 and later...

7.5CVSS5.5AI score0.00512EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/30 10:11 p.m.20 views

CVE-2026-25156 HotCRP vulnerable to stored XSS via comment attachments

HotCRP is conference review software. HotCRP versions from October 2025 through January 2026 delivered documents of all types with inline Content-Disposition, causing them to be rendered in the user’s browser rather than downloaded. The intended behavior was for only text/plain, application/pdf,...

7.3CVSS0.00227EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/23 6:19 a.m.6 views

CVE-2026-24036

Horilla is a free and open source Human Resource Management System HRMS. Versions 1.4.0 and above expose unpublished job postings through the /recruitment/recruitment-details// endpoint without authentication. The response includes draft job titles, descriptions and application link allowing...

5.3CVSS5.4AI score0.00463EPSS
Exploits1References1
OSV
OSV
added 2026/01/16 8:7 p.m.6 views

CVE-2026-23742 Skipper arbitrary code execution through lua filters

Skipper is an HTTP router and reverse proxy for service composition. The default skipper configuration before 0.23.0 was -lua-sources=inline,file. The problem starts if untrusted users can create lua filters, because of -lua-sources=inline , for example through a Kubernetes Ingress resource. The...

8.8CVSS6.6AI score0.00473EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.9 views

PT-2026-2800

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with International Color Consortium ICC color management profiles. A heap-based buffer overflow exists in the SIccCalcOp::Describe function at...

8.8CVSS7AI score0.00593EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.8 views

CVE-2020-10668

The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Reflected XSS in /home.jsp. The vulnerable parameter is openSI. NOTE: this is fixed in the latest version...

6.1CVSS6AI score0.01417EPSS
Exploits2References1
NVD
NVD
added 2025/12/11 1:16 a.m.6 views

CVE-2025-67717

ZITADEL is an open-source identity infrastructure tool. Versions 2.44.0 through 3.4.4 and 4.0.0-rc.1 through 4.7.1 disclose the total number of instance users to authenticated users, regardless of their specific permissions. While this does not leak individual user data or PII, disclosing the tot...

5.3CVSS0.00191EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/05 6:18 p.m.3 views

CVE-2025-66570 cpp-httplib Untrusted HTTP Header Handling: Internal Header Shadowing (REMOTE*/LOCAL*)

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can inject headers named REMOTEADDR, REMOTEPORT,...

10CVSS6.7AI score0.00307EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.14 views

PT-2025-49292

Name of the Vulnerable Software and Affected Versions Nextcloud Tables versions prior to 0.8.7 Nextcloud Tables versions prior to 0.9.4 Description Authenticated users could view metadata of columns in other tables within the Tables app by manipulating the numeric ID in a request. This allowed...

4.3CVSS6.2AI score0.0024EPSS
Exploits0References7
CVE
CVE
added 2025/12/01 9:46 p.m.11 views

CVE-2025-66306

CVE-2025-66306 describes an Insecure Direct Object Reference (IDOR) in Grav CMS Admin Panel prior to 1.8.0-beta.27. The vulnerability allows low-privilege authenticated users to access information from other accounts via endpoints such as /admin/accounts/users/{username}, potentially exposing adm...

6.5CVSS6.1AI score0.00258EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/11/05 11:9 p.m.18 views

CVE-2025-62161 youki container escape via "masked path" abuse due to mount race conditions

Youki is a container runtime written in Rust. In versions 0.5.6 and below, the initial validation of the source /dev/null is insufficient, allowing container escape when youki utilizes bind mounting the container's /dev/null as a file mask. This issue is fixed in version 0.5.7...

7.3CVSS0.00236EPSS
Exploits0References2
Rows per page
Query Builder