CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

160 matches found

NVD•added 2026/03/06 3:16 p.m.•3 views

CVE-2026-2752

Navtor NavBox allows information disclosure via the /api/ais-data endpoint. A remote, unauthenticated attacker can send crafted requests to trigger an unhandled exception, causing the server to return verbose .NET stack traces. These error messages expose internal class names, method calls, and...

5.3CVSS0.00043EPSS

Exploits0References2

Cvelist•added 2026/03/06 3:4 p.m.•23 views

CVE-2026-2752

5.3CVSS0.00043EPSS

Exploits0References2

CVE•added 2026/03/06 3:4 p.m.•3 views

CVE-2026-2752

CVE-2026-2752 affects Navtor NavBox via the /api/ais-data endpoint, where a remote unauthenticated attacker can trigger an unhandled exception, causing verbose .NET stack traces to be returned. This information disclosure exposes internal class names, methods, and third‑party library references (...

5.3CVSS5.8AI score0.00043EPSS

Exploits0References2

SUSE Linux•added 2026/03/03 12:49 p.m.•2 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-24491: heap-use-after-free in videotimer bsc1257981. CVE-2026-24675: heap-use-after-free in urbselectinterface bsc1257982. CVE-2026-24676: heap-use-after-free in audioformatcompatible bsc1257983. CVE-2026-24677: heap-buffer-overflow in...

7.3CVSS5.9AI score0.00026EPSS

Exploits0References44

RedhatCVE•added 2025/12/01 2:16 p.m.•3 views

CVE-2025-66217

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Leng...

8.8CVSS7.4AI score0.00758EPSS

Exploits1References1

RedhatCVE•added 2025/12/01 2:16 p.m.•4 views

CVE-2025-66216

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, a heap buffer overflow vulnerability has been identified in the AIS::Message class of AIS-catcher. This vulnerability allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer. This issue has been...

9.8CVSS7.4AI score0.00091EPSS

Exploits1References1

NVD•added 2025/11/29 3:15 a.m.•2 views

CVE-2025-66217

8.8CVSS0.00758EPSS

Exploits1References2

NVD•added 2025/11/29 3:15 a.m.•2 views

CVE-2025-66216

9.8CVSS0.00091EPSS

Exploits1References2

CVE•added 2025/11/29 1:57 a.m.•9 views

CVE-2025-66216

AIS-catcher before v0.64 is affected by a heap buffer overflow in AIS::Message that allows writing ~1 KB into a 128-byte buffer. This has been patched in v0.64. Remediation: upgrade to 0.64+ (or apply vendor advisories). Exploitation details are not provided in the supplied documents.

9.8CVSS7AI score0.00091EPSS

Exploits1References2Affected Software1

OSV•added 2025/11/29 1:57 a.m.•3 views

CVE-2025-66216 AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE

9.3CVSS7.3AI score0.00091EPSS

Exploits1References4

Cvelist•added 2025/11/29 1:57 a.m.•7 views

CVE-2025-66216 AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE

9.3CVSS0.00091EPSS

Exploits1References2

Vulnrichment•added 2025/11/29 1:57 a.m.•2 views

CVE-2025-66216 AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE

9.3CVSS7AI score0.00091EPSS

Exploits1References2

CVE•added 2025/11/29 1:57 a.m.•7 views

CVE-2025-66217

AIS-catcher is a cross-platform AIS receiver. Multiple connected sources describe a vulnerability in the MQTT parsing logic prior to version 0.64: an integer underflow can trigger a massive Heap Buffer Overflow when processing a malformed MQTT packet with a manipulated Topic Length field. This le...

8.8CVSS7AI score0.00758EPSS

Exploits1References2Affected Software1

OSV•added 2025/11/29 1:57 a.m.•2 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS7.3AI score0.00758EPSS

Exploits1References4

Vulnrichment•added 2025/11/29 1:57 a.m.•2 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS7AI score0.00758EPSS

Exploits1References2

Cvelist•added 2025/11/29 1:57 a.m.•7 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS0.00758EPSS

Exploits1References2

EUVD•added 2025/11/29 1:57 a.m.•3 views

EUVD-2025-199900

8.8CVSS6.9AI score0.00758EPSS

Exploits1References2

Positive Technologies•added 2025/11/29 12:0 a.m.•3 views

PT-2025-48360

Name of the Vulnerable Software and Affected Versions AIS-catcher versions prior to 0.64 Description AIS-catcher, a multi-platform AIS receiver, contains a flaw in its MQTT parsing logic. An integer underflow can be triggered by sending a crafted MQTT packet with a modified Topic Length field. Th...

8.8CVSS7.1AI score0.00758EPSS

Exploits1References7

CNNVD•added 2025/11/29 12:0 a.m.•1 views

AIS-catcher 安全漏洞

AIS-catcher is an AIS receiver from Jasper Personal Developers. A security vulnerability exists in AIS-catcher versions prior to 0.64, which stems from a heap buffer overflow in the AIS::Message class that could lead to arbitrary data writes...

9.8CVSS7AI score0.00091EPSS

Exploits1References3

CNNVD•added 2025/11/29 12:0 a.m.•2 views

AIS-catcher 数字错误漏洞

AIS-catcher is an AIS receiver from Jasper Personal Developers. A numeric error vulnerability exists in AIS-catcher versions prior to 0.64, which stems from an integer overflow in the MQTT parsing logic that could lead to a denial of service and memory corruption...

8.8CVSS6.7AI score0.00758EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by