Lucene search
K

2501 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/30 5:36 a.m.6 views

CVE-2026-6535

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00141EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/04/30 5:36 a.m.8 views

EUVD-2026-26342

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00141EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/04/30 5:36 a.m.8 views

CVE-2026-6535

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/04/30 5:36 a.m.4 views

CVE-2026-6535

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00141EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2026/04/30 5:36 a.m.9 views

CVE-2026-6535 Improperly Controlled Sequential Memory Allocation in Wireshark

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00141EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/04/30 12:0 a.m.9 views

CVE-2026-6535

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References2
Amazon
Amazon
added 2026/04/30 12:0 a.m.8 views

Low: nodejs22

Issue Overview: A flaw was found in zlib. An attacker providing specially crafted input to the crc32combine64 or crc32combinegen64 functions could trigger an infinite loop within the x2nmodp function. This leads to excessive CPU consumption, which can result in a Denial of Service DoS for the...

5.5CVSS5.2AI score0.00204EPSS
Exploits1
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.8 views

Wireshark 安全漏洞

Wireshark is a set of network packet analysis software developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4, as well as 4.4.0 to 4.4.14, have security vulnerabilities. These...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References1
Amazon
Amazon
added 2026/04/30 12:0 a.m.5 views

Low: nodejs20

Issue Overview: A flaw was found in zlib. An attacker providing specially crafted input to the crc32combine64 or crc32combinegen64 functions could trigger an infinite loop within the x2nmodp function. This leads to excessive CPU consumption, which can result in a Denial of Service DoS for the...

5.5CVSS5.3AI score0.00204EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.9 views

Amazon Linux 2023 : nodejs20, nodejs20-devel, nodejs20-full-i18n (ALAS2023-2026-1608)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1608 advisory. A flaw was found in zlib. An attacker providing specially crafted input to the crc32combine64 or crc32combinegen64 functions could trigger an infinite loop within the x2nmodp function. This leads to...

5.5CVSS5.8AI score0.00204EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.6 views

Amazon Linux 2023 : nodejs22, nodejs22-devel, nodejs22-full-i18n (ALAS2023-2026-1616)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1616 advisory. A flaw was found in zlib. An attacker providing specially crafted input to the crc32combine64 or crc32combinegen64 functions could trigger an infinite loop within the x2nmodp function. This leads to...

5.5CVSS5.8AI score0.00204EPSS
Exploits1References4
Amazon
Amazon
added 2026/04/30 12:0 a.m.6 views

Medium: nodejs24

Issue Overview: @isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0.1, @isaacs/brace-expansion is vulnerable to a denial of service DoS issue caused by unbounded brace range expansion. When an attacker provides a pattern containing repeated numeric...

9.2CVSS5.3AI score0.00481EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.11 views

Amazon Linux 2023 : nodejs24, nodejs24-devel, nodejs24-full-i18n (ALAS2023-2026-1609)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1609 advisory. @isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0.1, @isaacs/brace-expansion is vulnerable to a denial of service DoS issue caused by unbound...

9.2CVSS5.7AI score0.00481EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-6535

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service CVE-2026-6535 Note that Nessus relies on the...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.6 views

PT-2026-36072

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.4 Wireshark versions 4.4.0 through 4.4.14 Description A crash in the dissection engine during zlib decompression can lead to a denial of service. Recommendations Update Wireshark versions 4.6.0 through 4.6....

7.8CVSS6AI score0.00195EPSS
Exploits16References103
Kaspersky
Kaspersky
added 2026/04/29 12:0 a.m.10 views

KLA91016 Multiple vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Monero protocol dissector can be exploited to cause a denial...

6.3AI score
Exploits0References35
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/27 6:29 a.m.7 views

Security Bulletin: Due to the use of Perl, IBM Tivoli Network Manager IP Edition (ITNM) is affected by vulnerable version of Zlib within Perl.

Summary Perl is used by IBM Tivoli Network Manager IP Edition ITNM for core agents processing, collectors and general tooling CVE-2026-4176. Vulnerability Details CVEID:CVE-2026-4176 DESCRIPTION: Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9...

9.8CVSS5.3AI score0.00676EPSS
Exploits1Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/04/18 8:1 a.m.8 views

zlib: Buffer Overflow in Zlib::GzipReader ungetc via large input leads to memory corruption

...

9.8CVSS7.5AI score0.00561EPSS
Exploits0
Veracode
Veracode
added 2026/04/18 5:37 a.m.4 views

Buffer Overflow

zlib is vulnerable to a buffer overflow. The vulnerability is due to insufficient capacity validation in the zstreambufferungets function of Zlib::GzipReader before shifting existing data with memmove, which allows an attacker to trigger memory corruption by supplying crafted input that causes th...

9.8CVSS7.3AI score0.00561EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/04/16 8:40 p.m.5 views

EUVD-2026-23278

Buffer Overflow in Zlib::GzipReader ungetc via large input leads to memory corruption...

6.3CVSS6.5AI score0.00561EPSS
Exploits0References5
Rows per page
Query Builder