Lucene search
K

350 matches found

Debian CVE
Debian CVE
added 2026/05/10 3:42 a.m.14 views

CVE-2026-7568

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, the metaphone function in ext/standard/metaphone.c uses a signed int variable to track the current position within the input string. If a string longer than 2,147,483,647 bytes is passed, a signed...

7.5CVSS5.8AI score0.00455EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-38025

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in gst wavparse cue chunk within gstwavparse.c. The vulnerability happens due to a discrepancy between the size of the data buffer and the size value provided to the function. This mismatc...

9.1CVSS6.8AI score0.01161EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.7 views

Open vSwitch 安全漏洞

Open vSwitch is a virtual switch developed as part of the Collaborative Project. There is a security vulnerability in Open vSwitch. This vulnerability arises when configuring conntrack streams that use FTP auxiliary programs. A remote attacker can send a specially crafted FTP stream, resulting in...

5.9CVSS5.8AI score0.00405EPSS
Exploits0References2
NVD
NVD
added 2026/04/22 2:16 p.m.12 views

CVE-2026-31442

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset FLR concludes correctly, but in the second FLR the scratch area for the saved configuration cannot be allocated, it's...

7.8CVSS0.00127EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013422 advisory. An out-of-bounds OOB memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allows a local attacker with a special...

7.1CVSS5.8AI score0.01095EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011044)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011044 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix invalid address access when enabling SCAN log level The variable i is changed...

5.9AI score0.00225EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 6:22 p.m.6 views

CVE-2026-23429

A flaw was found in the Linux kernel. Specifically, within the input/output memory management unit IOMMU subsystem, a memory management error can occur. When the iommusvaunbinddevice function is called, it may attempt to access a memory area that has already been freed. This can lead to a system...

7.8CVSS5.8AI score0.00127EPSS
Exploits0References4
CVE
CVE
added 2026/03/20 2:43 a.m.25 views

CVE-2026-32937

This CVE affects free5GC CHF prior to v1.2.2, where an out-of-bounds slice access in nchf-convergedcharging RechargePut(...) can be triggered by an authenticated PUT to /nchf-convergedcharging/v3/recharging/:ueId?ratingGroup=.... The result is a server-side panic converted to HTTP 500 by Gin, ena...

7.1CVSS5.8AI score0.00404EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/18 5:40 p.m.22 views

CVE-2025-71270 LoongArch: Enable exception fixup for specific ADE subcode

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

0.00121EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/02 4:53 p.m.4 views

CVE-2025-47373 Out-of-bounds Write in Automotive

Memory Corruption when accessing buffers with invalid length during TA invocation...

7.8CVSS5.9AI score0.00071EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 9:16 a.m.7 views

CVE-2026-20441

In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803...

6.7CVSS5.8AI score0.00077EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 10:16 p.m.12 views

CVE-2026-28419

Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file where a delimiter appears at the start of a line, Vim attempts to read memory immediately preceding...

6.6CVSS0.00168EPSS
Exploits0References4
Snyk
Snyk
added 2026/02/24 1:44 a.m.4 views

Buffer Access with Incorrect Length Value

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

9.8CVSS5.7AI score0.00461EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:44 a.m.5 views

Buffer Access with Incorrect Length Value

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

9.8CVSS5.7AI score0.00461EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.8 views

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-39853)

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

7.1CVSS6.3AI score0.00152EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/27 4:1 p.m.9 views

CVE-2026-22796

Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data. Impact summary: An application...

5.3CVSS5.9AI score0.00502EPSS
Exploits1References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005136)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005136 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of STR method Only buffer objects are valid return values of ST...

7.1CVSS5.9AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.8 views

MiracleLinux 7 : exiv2-0.27.0-2.el7 (AXSA:2019-4178:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4178:01 advisory. exiv2: heap-buffer-overflow in Exiv2::IptcData::printStructure in src/iptc.cpp CVE-2017-17724 exiv2: out-of-bounds read in...

8.8CVSS6.6AI score0.02891EPSS
Exploits20References23
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue with the delayed work item otgevent in the fslotgremove function, which could lea...

5.8AI score0.00181EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/05 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper boundary checking of the iommummiowrite function in the amd iommu driver, which could lead to...

6.1AI score0.00155EPSS
Exploits0References5
Rows per page
Query Builder