Lucene search
K

6 matches found

CVE
CVE
added 2026/03/11 3:22 p.m.10 views

CVE-2026-21888

CVE-2026-21888 affects NanoMQ (MQTT v5) where get_var_integer() in the Variable Byte Integer parser accepts 5-byte varints without bounds checks, causing an out-of-bounds read and potential crash when built with ASan. Impact is described as high severity (CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N...

7.5CVSS5.8AI score0.00302EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2025/07/31 7:20 p.m.8 views

OpenEXR Out of Bounds Heap Read due to Bad Pointer Arithmetic in LossyDctDecoder_execute

Summary The OpenEXRCore code is vulnerable to a heap-based buffer overflow during a read operation due to bad pointer math when decompressing DWAA-packed scan-line EXR files with a maliciously forged chunk. Details In the LossyDctDecoderexecute function from...

9.1CVSS6.5AI score0.00496EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2023/06/01 1:15 a.m.8 views

AZL-35073 CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

7.1CVSS7AI score0.00295EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.6 views

PT-2023-22410 · Opensc +7 · Opensc +7

Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: A security flaw in OpenSC causes a buffer overrun vulnerability in pkcs15 cardos have verifyrc package. An attacker can supply a smart card package with malformed ASN1 context. The cardos ha...

7.5CVSS5.6AI score0.02805EPSS
Exploits2References117
0day.today
0day.today
added 2018/09/22 12:0 a.m.161 views

WebRTC - FEC Out-of-Bounds Read Exploit

Exploit for multiple platform in category dos / poc There is an out-of-bounds read in FEC processing in WebRTC. If a very short RTP packet is received, FEC will assume the packet is longer and process data outside of the allocated buffer. This bug causes the following ASAN crash: ==109993==ERROR:...

9.2AI score0.05264EPSS
Exploits1
exploitpack
exploitpack
added 2018/09/21 12:0 a.m.36 views

WebRTC - FEC Out-of-Bounds Read

WebRTC - FEC Out-of-Bounds Read There is an out-of-bounds read in FEC processing in WebRTC. If a very short RTP packet is received, FEC will assume the packet is longer and process data outside of the allocated buffer. This bug causes the following ASAN crash: ==109993==ERROR: AddressSanitizer:...

7.4AI score
Exploits0
Rows per page
Query Builder