Lucene search
K

519 matches found

CVE
CVE
added 2026/01/30 9:28 p.m.15 views

CVE-2025-36123

CVE-2025-36123 affects IBM Db2 for Linux, UNIX and Windows (including DB2 Connect Server) 11.5.0–11.5.9 and 12.1.0–12.1.3. The vulnerability stems from improper allocation of system resources, enabling a local user to cause a denial of service when copying large tables that contain XML data. Impa...

6.2CVSS5.9AI score0.00134EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/21 12:0 a.m.7 views

MiracleLinux 9 : postgresql:16 (AXSA:2026-063:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-063:01 advisory. postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer...

5.9CVSS5.9AI score0.00307EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : libwebp-1.0.0-5.el8 (AXSA:2021-2754:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2754:03 advisory. libwebp: out-of-bounds read in WebPMuxCreateInternal CVE-2018-25009 libwebp: out-of-bounds read in ApplyFilter CVE-2018-25010 libwebp: out-of-bounds...

9.8CVSS5.6AI score0.02302EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

AlmaLinux 9 : postgresql:15 (ALSA-2026:0492)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:0492 advisory. postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound...

5.9CVSS5.6AI score0.00307EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/01/14 9:8 a.m.7 views

postgresql:13 security update

An update is available for pgrepack, module.postgresql, module.pgaudit, postgresql, postgres-decoderbufs, module.pgrepack, module.postgres-decoderbufs, pgaudit. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5.9CVSS7AI score0.00307EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 9 : grafana-10.2.6-11.el9_6 (AXSA:2025-10478:10)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10478:10 advisory. golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing CVE-2025-30204 Tenable has extracted the preceding description block directl...

7.5CVSS7.3AI score0.00693EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : osbuild-composer-101-3.el8_10.ML.1 (AXSA:2025-9957:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9957:03 advisory. golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing CVE-2025-30204 Tenable has extracted the preceding description block directly...

7.5CVSS7.3AI score0.00693EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/01/12 2:26 a.m.4 views

Important: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00523EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.6 views

CVE-2023-50433

marshall in dhcppacket.c in simple-dhcp-server through ec976d2 allows remote attackers to cause a denial of service by sending a malicious DHCP packet. The crash is caused by a type confusion bug that results in a large memory allocation; when this memory allocation fails the DHCP server will cra...

6.5CVSS7AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.6 views

CVE-2019-11938

Java Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. As a result, malicious clients could send short messages which would result in a large memory allocation, potentially leading to denial of service. This issue affects Facebo...

7.5CVSS6.7AI score0.02197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.8 views

CVE-2021-27417

eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in function calloc an implementation of malloc. The unverified memory assignment can lead to arbitrary memory allocation, resulting in a heap-based buffer overflow...

9.8CVSS7.1AI score0.0056EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:2 a.m.5 views

CVE-2023-25568

Boxo, formerly known as go-libipfs, is a library for building IPFS applications and implementations. In versions 0.4.0 and 0.5.0, if an attacker is able allocate arbitrary many bytes in the Bitswap server, those allocations are lasting even if the connection is closed. This affects users acceptin...

8.2CVSS7AI score0.00856EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/08 12:0 a.m.3 views

RHEL 9 : postgresql (RHSA-2026:0263)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0263 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check fo...

5.9CVSS5.7AI score0.00307EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.18 views

CVE-2025-1992

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage...

6.5CVSS6AI score0.00315EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993077)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993077 advisory. In the Linux kernel, the following vulnerability has been resolved: bnxten: Avoid order-5 memory allocation for TPA data The driver needs to keep track of all the...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.3 views

RHEL 8 : expat (RHSA-2025:22842)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22842 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: internal entity expansion CVE-2013-0340 expat: integer overflow in t...

7.5CVSS7.6AI score0.19433EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.3 views

RHEL 9 : expat (RHSA-2025:22033)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22033 advisory. Expat is a C library for parsing XML documents. Security Fixes: libexpat: expat: Improper Restriction of XML Entity Expansion Depth in...

7.5CVSS7.1AI score0.01569EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/11 7:57 p.m.4 views

Important: Red Hat Security Advisory: expat security update

An update for expat is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.3AI score0.01279EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/23 12:0 a.m.5 views

NVIDIA GPU Display Driver 代码问题漏洞

NVIDIA GPU Display Driver is a display driver from NVIDIA Corporation. A code issue vulnerability exists in NVIDIA GPU Display Driver, which originates in the kernel driver where a user can dereference a null pointer by allocating specific memory resources, potentially resulting in a denial of...

5.5CVSS6.5AI score0.00133EPSS
Exploits0References3
OSV
OSV
added 2025/10/17 2:54 p.m.6 views

OESA-2025-2455 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat in Expat before version 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document...

7.5CVSS7AI score0.01279EPSS
Exploits1References2
Rows per page
Query Builder