Lucene search
K

930 matches found

EUVD
EUVD
added 2026/06/10 12:31 a.m.14 views

EUVD-2026-35883

An application using spring-security-saml2-service-provider and the REDIRECT binding for SAML 2.0 Login or Logout may be vulnerable to a denial of service by way of an unbounded writer that inflates the compressed SAML payload into memory. Affected versions: Spring Security 5.7.0 through 5.7.23;...

7.5CVSS5.5AI score0.00331EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 12:16 a.m.19 views

CVE-2026-40988

An application using spring-security-saml2-service-provider and the REDIRECT binding for SAML 2.0 Login or Logout may be vulnerable to a denial of service by way of an unbounded writer that inflates the compressed SAML payload into memory. Affected versions: Spring Security 5.7.0 through 5.7.23;...

7.5CVSS0.00331EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.15 views

PT-2026-48305

Name of the Vulnerable Software and Affected Versions Spring Security versions 5.7.0 through 5.7.23 Spring Security versions 5.8.0 through 5.8.25 Spring Security versions 6.3.0 through 6.3.16 Spring Security versions 6.4.0 through 6.4.16 Spring Security versions 6.5.0 through 6.5.10 Spring Securi...

7.5CVSS5.2AI score0.00331EPSS
Exploits0References5
OSV
OSV
added 2026/06/05 9:45 p.m.7 views

GHSA-5X67-J5XG-C5GJ Bugsink: DOS using large numbers of event tags

Summary In affected versions, Bugsink stores every tag supplied with an incoming event. An event with an unusually large number of custom i.e. supplied by an attacker tags can therefore make ingestion spend more time than intended writing tag rows. Bugsink uses a single-writer database...

4.3CVSS5.5AI score0.00056EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/06/05 9:45 p.m.12 views

Bugsink: DOS using large numbers of event tags

Summary In affected versions, Bugsink stores every tag supplied with an incoming event. An event with an unusually large number of custom i.e. supplied by an attacker tags can therefore make ingestion spend more time than intended writing tag rows. Bugsink uses a single-writer database...

5.5AI score0.00056EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/06/04 7:23 p.m.15 views

Shopware: Privilege Escalation via Sync API Integration Admin Flag Bypass

Summary A non-admin API user with integration:create ACL privilege can escalate to full administrator by creating an integration with admin: true through the Sync API POST /api/action/sync. The regular integration endpoint POST /api/integration correctly blocks this, but the Sync API bypasses the...

5.9AI score0.00034EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2026/06/01 5:9 p.m.33 views

CVE-2026-49121

CVE-2026-49121 affects AI Tensor Engine for ROCm (AITER) up to version 0.1.14. The vulnerability exists in the MessageQueue.recv() function in shm_broadcast.py, where an unauthenticated remote attacker can deliver a crafted pickle payload to a ZMQ SUB socket (no authentication, no HMAC, no format...

9.8CVSS6.7AI score0.01104EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.23 views

PT-2026-45540

Name of the Vulnerable Software and Affected Versions AI Tensor Engine for ROCm AITER versions prior to 0.1.15 Description An unauthenticated remote code execution issue exists in the MessageQueue.recv function within shm broadcast.py. This occurs because a ZMQ SUB socket lacks authentication,...

9.8CVSS6.7AI score0.01104EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/05/30 1:59 a.m.10 views

SUSE CVE-2026-49130

Music Player Daemon MPD before version 0.24.11 contains a CRLF injection vulnerability in the xspfchardata function within the XSPF playlist plugin that allows attackers to embed literal CR/LF bytes in URI fields by supplying a malicious XSPF playlist with XML numeric character references...

6.9CVSS5.8AI score0.0026EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/29 8:13 p.m.9 views

CVE-2026-49130

Music Player Daemon MPD before version 0.24.11 contains a CRLF injection vulnerability in the xspfchardata function within the XSPF playlist plugin that allows attackers to embed literal CR/LF bytes in URI fields by supplying a malicious XSPF playlist with XML numeric character references...

6.9CVSS5.8AI score0.0026EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 7:12 p.m.32 views

CVE-2026-49130 Music Player Daemon < 0.24.11 CRLF Injection via XspfPlaylistPlugin.cxx

Music Player Daemon MPD before version 0.24.11 contains a CRLF injection vulnerability in the xspfchardata function within the XSPF playlist plugin that allows attackers to embed literal CR/LF bytes in URI fields by supplying a malicious XSPF playlist with XML numeric character references...

6.9CVSS0.0026EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/05/28 7:12 p.m.13 views

CVE-2026-49130

Music Player Daemon MPD before version 0.24.11 contains a CRLF injection vulnerability in the xspfchardata function within the XSPF playlist plugin that allows attackers to embed literal CR/LF bytes in URI fields by supplying a malicious XSPF playlist with XML numeric character references...

6.9CVSS5.8AI score0.0026EPSS
Exploits0
Fedora
Fedora
added 2026/05/28 1:13 a.m.29 views

[SECURITY] Fedora 44 Update: rust-astral-tokio-tar-0.6.2-1.fc44

A Rust implementation of an async TAR file reader and writer. This library does not currently handle compression, but it is abstract over all I/O readers and writers. Additionally, great lengths are taken to ensure that the entire contents are never required to be entirely resident in memory all ...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/28 1:13 a.m.27 views

[SECURITY] Fedora 44 Update: rust-astral_async_zip-0.0.18~rc4-2.fc44

An asynchronous ZIP archive reading/writing crate...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/28 12:48 a.m.14 views

[SECURITY] Fedora 43 Update: rust-astral-tokio-tar-0.6.2-1.fc43

A Rust implementation of an async TAR file reader and writer. This library does not currently handle compression, but it is abstract over all I/O readers and writers. Additionally, great lengths are taken to ensure that the entire contents are never required to be entirely resident in memory all ...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/05/27 3:33 p.m.13 views

EUVD-2026-32312

A flaw was found in Samba’s vfsworm module. The module is intended to provide write-once, read-many WORM protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share...

6.5CVSS5.7AI score0.00939EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/24 11:38 a.m.122 views

PwnGPT-Automation

PwnGPT Caputre the flag with Large Language Models. Constructe...

6AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/23 11:44 a.m.34 views

CVE-2026-46300

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker during coalescing skbtrycoalesce can attach paged frags from @from to @to. If @from has SKBFLSHAREDFRAG set, the resulting @to skb can contain the same externally-owned or page-cache-backe...

6AI score0.03663EPSS
Exploits11References16Affected Software1
OSV
OSV
added 2026/05/22 1:16 p.m.6 views

OESA-2026-2359 runc security update

runc is a CLI tool for spawning and running containers according to the OCI specification. Security Fixes: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in...

7.5CVSS7.2AI score0.00585EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 9:49 p.m.12 views

Malicious code in claude-content-writer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b38e69b148dc7998c9ab02fb5b6c2a90413a88129cf7db96b1c900e9c830f719 On npm install, the package's postinstall hook runs scripts/install-dependencies.sh, which performs git clone --depth 1...

6AI score
Exploits0References1
Rows per page
Query Builder