Lucene search
K

1164 matches found

CVE
CVE
added 2 days ago7 views

CVE-2026-13759

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses WsObjectInputStream, ObjectStreamPool$ReusableInputStream, ObjectInputStreamResolver that install no JEP-290 class filter; when Coherence is on the classpath, multiple RCE gadget chains including...

7.5CVSS6.2AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2 days ago8 views

CVE-2026-50734

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attacker can cause a broker DoS by sending a crafted WireFormatInfo frame with a malicious large size value. The value is not validate and causes t...

7.5CVSS0.00524EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

UBUNTU-CVE-2026-50734

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attacker can cause a broker DoS by sending a crafted WireFormatInfo frame with a malicious large size value. The value is not validate and causes t...

7.5CVSS5.8AI score0.00524EPSS
Exploits0References3
Cvelist
Cvelist
added 2 days ago28 views

CVE-2026-57080 Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago3 views

CVE-2026-57080

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References2
CVE
CVE
added 2 days ago6 views

CVE-2026-57080

Net::BitTorrent (Perl) up to version 2.0.1 is affected by a memory-exhaustion vulnerability caused by an unbounded 4-byte peer-wire message-length prefix in _process_messages. The decoder waits for a full message before processing, allowing the input buffer to grow without limit when a peer annou...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-40289

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-50734

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attacker can cause a broker DoS by sending a crafted WireFormatInfo frame with a malicious large size value. The value is not validate and causes t...

7.5CVSS5.7AI score0.00524EPSS
Exploits0References2Affected Software3
EUVD
EUVD
added 2 days ago4 views

EUVD-2026-40282

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attacker can cause a broker DoS by sending a crafted WireFormatInfo frame with a malicious large size value. The value is not validate and causes t...

7.5CVSS5.7AI score0.00524EPSS
Exploits0References1
OSV
OSV
added last week3 views

GHSA-9M57-25V3-79X9 golang.org/x/crypto/ssh/agent: Invoking pathological inputs can lead to client panic

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

5.3CVSS5.8AI score0.00313EPSS
Exploits0References5
EUVD
EUVD
added last week10 views

EUVD-2026-31402

golang.org/x/crypto/ssh/agent: Invoking pathological inputs can lead to client panic...

5.3CVSS5.8AI score0.00313EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Input: tiam335xtsc – fixed an off-by-one error in the wireorder validation. The current validation wireorderi ARRAYSIZEconfig pins allows wireorderi to equal ARRAYSIZEconfig pins, which causes out-of-bounds access when used as an...

6.4AI score0.00173EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: x86-android-tablets: Devices are unregistered in reverse order. Not all subsystems support the removal of a device when there are still consumers referencing that device. One example is the regulator subsystem. If a...

5.5CVSS5AI score0.00288EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: i2c: npcm: Disable the interrupt enable bit before calling devmrequestirq The customer reports a soft lockup issue related to the i2c driver. After checking, it was found that the i2c module was performing a transmission operatio...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References2
Circl
Circl
added 2026/06/17 2:0 a.m.7 views

CVE-2026-47964

creationtimestamp| type| source ---|---|--- 2026-06-17 02:00:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3moh7r44us52u...

7.8CVSS5AI score0.00199EPSS
Exploits0References1
Circl
Circl
added 2026/06/16 8:0 p.m.8 views

CVE-2026-53864

creationtimestamp| type| source ---|---|--- 2026-06-16 20:00:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3moglmhdrsi27 2026-06-16 21:48:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mogrncto6p2g...

8.1CVSS4.9AI score0.00246EPSS
Exploits0References2
Circl
Circl
added 2026/06/16 1:0 p.m.6 views

CVE-2026-39581

creationtimestamp| type| source ---|---|--- 2026-06-16 13:00:55+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mofu6ceys72f 2026-06-16 13:24:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mofvilrs3b2f...

8.5CVSS4.9AI score0.0027EPSS
Exploits0References2
Circl
Circl
added 2026/06/15 3:0 a.m.11 views

CVE-2026-11774

creationtimestamp| type| source ---|---|--- 2026-06-15 03:00:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mocc5w2sez26...

7.6CVSS4.9AI score0.00539EPSS
Exploits0References1
Circl
Circl
added 2026/06/15 2:0 a.m.8 views

CVE-2026-47170

creationtimestamp| type| source ---|---|--- 2026-06-15 02:00:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3moc6sreia222...

7.7CVSS4.9AI score0.00209EPSS
Exploits0References1
HackRead
HackRead
added 2026/06/13 2:31 p.m.14 views

Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks

Ukrainian national Oleksii Lytvynenko has pleaded guilty in the US to wire fraud conspiracy linked to Conti ransomware, which hit more than 1,000 victims and generated at least $150 million in ransom payments...

5.4AI score
Exploits0
Rows per page
Query Builder