Lucene search
K

60446 matches found

EUVD
EUVD
added 3 hours ago4 views

EUVD-2022-49113

Open Babel has out-of-bounds write in MSI translationVectors...

9.8CVSS6.8AI score0.00816EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago7 views

EUVD-2022-49112

Open Babel has out-of-bounds write in MOPAC IN translationVectors Tv atom...

9.8CVSS7.2AI score0.00816EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago7 views

EUVD-2022-49108

Open Babel has out-of-bounds write in ORCA nAtoms parser second variant...

9.8CVSS7.2AI score0.00816EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago6 views

EUVD-2022-46603

Open Babel has out-of-bounds write in MOL2 attribute/value parser...

8.1CVSS7.1AI score0.00753EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago4 views

EUVD-2022-46468

Open Babel has out-of-bounds write in PQS coordfile parser...

9.8CVSS6.8AI score0.00843EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago3 views

EUVD-2022-44961

Open Babel has out-of-bounds write in CSR PadString title field...

9.8CVSS7.2AI score0.00816EPSS
Exploits1References5
EUVD
EUVD
added 3 hours ago3 views

EUVD-2022-39966

Open Babel has out-of-bounds write in Gaussian coordstype orientation parser...

7.8CVSS6.7AI score0.00666EPSS
Exploits1References5
NVD
NVD
added 4 hours ago5 views

CVE-2026-58126

PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote attackers to read and write arbitrary files by exploiting an exposed .NET Remoting TCP service on port 22222 via PGImageExchQueue.exe without any authentication requirement. Attackers can...

9.8CVSS
Exploits0References3
NVD
NVD
added 4 hours ago6 views

CVE-2026-57517

Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated remote attackers to execute arbitrary SQL queries by submitting unsanitized input through the userRes POST parameter at the user endpoint. Attackers can exploit MySQL root privileges...

9.8CVSS
Exploits1References3
NVD
NVD
added 4 hours ago4 views

CVE-2025-23350

NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual function VF access may cause a write out of bounds by crafted input. A successful exploit of this vulnerability may lead to arbitrary code execution on the device...

9CVSS
Exploits0References3
Cvelist
Cvelist
added 6 hours ago4 views

CVE-2026-58126 PACSgear PACS Scan 5.2.1 Unauthenticated RCE via .NET Remoting TCP Service

PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote attackers to read and write arbitrary files by exploiting an exposed .NET Remoting TCP service on port 22222 via PGImageExchQueue.exe without any authentication requirement. Attackers can...

9.8CVSS
Exploits0References3
Cvelist
Cvelist
added 7 hours ago4 views

CVE-2026-23537 Feast: unauthenticated arbitrary file write

A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an unauthenticated remote attacker to write arbitrary JSON files to the server's filesystem. Although the system attempts to restrict file locations, these protections can be bypassed, enabling a...

9.1CVSS
Exploits0References3
EUVD
EUVD
added 7 hours ago5 views

EUVD-2026-40997

A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an unauthenticated remote attacker to write arbitrary JSON files to the server's filesystem. Although the system attempts to restrict file locations, these protections can be bypassed, enabling a...

9.1CVSS6.2AI score
Exploits0References3
EUVD
EUVD
added 7 hours ago4 views

EUVD-2026-40988

In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an...

9.1CVSS6.2AI score0.00463EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 11 hours ago3 views

kernel: dlm: validate length in dlm_search_rsb_tree

A flaw was found in the Linux kernel's Distributed Lock Manager dlm module. An attacker could send specially crafted network messages with an oversized length parameter to the dlmdumprsbname function. This lack of validation can lead to an out-of-bounds write in the dlmsearchrsbtree function,...

9.8CVSS6.4AI score0.00411EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 12 hours ago3 views

kernel: dlm: validate length in dlm_search_rsb_tree

A flaw was found in the Linux kernel's Distributed Lock Manager dlm module. An attacker could send specially crafted network messages with an oversized length parameter to the dlmdumprsbname function. This lack of validation can lead to an out-of-bounds write in the dlmsearchrsbtree function,...

9.8CVSS6.4AI score0.00411EPSS
Exploits0References5
NVD
NVD
added 16 hours ago4 views

CVE-2026-14191

An out-of-bounds heap write exists in the RAR5 recovery-volume .rev parser in WinRAR and UnRAR RecVolumes5::ReadHeader in recvol5.cpp. The RecItems vector is sized only when the first .rev file in a set is processed; subsequent .rev files supply an independent RecNum value that is validated again...

7.8CVSS
Exploits0References2
Nuclei
Nuclei
added 17 hours ago5 views

Xerte Online Toolkits <= 3.15 - Remote Code Execution

Xerte Online Toolkits versions 3.15 and earlier expose the elFinder file manager connector at /editor/elfinder/php/connector.php without authentication CVE-2026-34413, because the access-control redirect for unauthenticated users does not call exit/die and execution continues server-side. This is...

9.8CVSS6.2AI score0.03575EPSS
Exploits1References6
Nuclei
Nuclei
added 17 hours ago18 views

Plenti < v0.7.2 - OS Command Injection

Plenti, a static site generator, has an arbitrary file write vulnerability in versions prior to 0.7.2. The /postLocal endpoint is vulnerable to an arbitrary file write vulnerability when a plenti user serves their website. This issue may lead to Remote Code Execution. Version 0.7.2 fixes the...

9.3CVSS7.2AI score0.02763EPSS
Exploits1References2
Nuclei
Nuclei
added 17 hours ago21 views

YouPHPTube Encoder - Arbitrary File Write

Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube.The parameter base64Url in /objects/getImageMP4.php is vulnerable to a command injection attack. id: CVE-2019-5128 info: name: YouPHPTube Encoder - Arbitrary...

10CVSS7.3AI score0.30174EPSS
Exploits1References1
Rows per page
Query Builder