Lucene search
K

181 matches found

NVD
NVD
added 5 days ago8 views

CVE-2026-54001

osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Prior to 5.23.1, on Windows, a local unprivileged attacker can cause a heap buffer out-of-bounds write if there is a query of the authenticode table targeting a maliciously crafted binary, due to...

7CVSS0.00108EPSS
Exploits0References4
Cvelist
Cvelist
added 5 days ago31 views

CVE-2026-54001 osquery: Heap buffer overflow via `authenticode` table (Windows)

osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Prior to 5.23.1, on Windows, a local unprivileged attacker can cause a heap buffer out-of-bounds write if there is a query of the authenticode table targeting a maliciously crafted binary, due to...

7CVSS0.00108EPSS
Exploits0References4
CVE
CVE
added 5 days ago11 views

CVE-2026-54001

CVE-2026-54001 affects osquery on Windows prior to version 5.23.1. A local, unprivileged attacker can trigger a heap out-of-bounds write via the authenticode table by crafting a malicious binary query, due to publisher information parsing in getOriginalProgramName. Successful exploitation could e...

7CVSS6.2AI score0.00108EPSS
Exploits0References4
OSV
OSV
added 5 days ago1 views

CVE-2026-54001 osquery: Heap buffer overflow via `authenticode` table (Windows)

osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Prior to 5.23.1, on Windows, a local unprivileged attacker can cause a heap buffer out-of-bounds write if there is a query of the authenticode table targeting a maliciously crafted binary, due to...

7CVSS6.2AI score0.00108EPSS
Exploits0References6
OSV
OSV
added 2026/06/16 2:41 p.m.4 views

SUSE-SU-2026:0741-2 Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory - SbatLevelVariable.txt: minor typo fix. - Realloc needs to...

6.7CVSS5.5AI score0.00378EPSS
Exploits1References4
NVD
NVD
added 2026/06/09 7:17 p.m.14 views

CVE-2026-8863

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...

7.8CVSS0.00097EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 6:10 p.m.14 views

EUVD-2026-35791

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...

7.8CVSS6AI score0.00097EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.17 views

PT-2026-48216

Name of the Vulnerable Software and Affected Versions Spyrus WTGCreator version 4.2 Baramundi Management Suite versions prior to 2024R1 WhiteCanyon WipeDrive versions 8.0.0 through 8.1.3 Finland Matriculation Exam Abitti 1 version 1.0.0 NTC IT Rosa versions R9 and R10 PC-Doctor Service Center...

7.8CVSS5.9AI score0.00097EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/04/27 9:53 a.m.156 views

DrvEye

drivertool A static-analysis & exploitation-triage toolkit...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
added 2026/04/16 2:25 p.m.7 views

Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: shimstartimage: fix guid/handle pairing when uninstalling protocols Fix uncompressed ipv6 netboot fix test segfaults caused by uninitialized memory SbatLevelVariable.txt: minor typo fix. Realloc needs to allocate on...

6.7CVSS6.6AI score0.00378EPSS
Exploits1References6
OSV
OSV
added 2026/04/16 2:25 p.m.5 views

SUSE-SU-2026:1414-1 Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory - SbatLevelVariable.txt: minor typo fix. - Realloc needs to...

6.7CVSS6.6AI score0.00378EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/04/09 4:3 p.m.2 views

CVE-2026-39856

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an out-of-bounds read vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code pepagehashcalc. When processing PE sections for page hashing, the function uses...

5.5CVSS5.5AI score0.00143EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/04/09 3:58 p.m.2 views

CVE-2026-39855

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an integer underflow vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code pepagehashcalc. When page hash processing is performed on a PE file, the function...

5.5CVSS5.7AI score0.00143EPSS
Exploits0
EUVD
EUVD
added 2026/04/09 3:50 p.m.4 views

EUVD-2026-20942

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS7 signature, the code copies the digest value from a parsed...

7.8CVSS6.2AI score0.00163EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/09 3:50 p.m.4 views

CVE-2026-39853

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS7 signature, the code copies the digest value from a parsed...

7.8CVSS5.9AI score0.00163EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.10 views

PT-2026-31646

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an integer underflow vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code pe page hash calc. When page hash processing is performed on a PE file, the function...

5.5CVSS6.1AI score0.00143EPSS
Exploits0References4
OSV
OSV
added 2026/03/05 2:21 p.m.5 views

SUSE-RU-2026:20683-1 Recommended update for shim

This update for shim fixes the following issues: This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory -...

6.7CVSS5.8AI score0.00378EPSS
Exploits1References6
OSV
OSV
added 2026/03/05 2:21 p.m.5 views

OPENSUSE-RU-2026:20325-1 Recommended update for shim

This update for shim fixes the following issues: This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory -...

6.7CVSS5.8AI score0.00378EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.2 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : shim (SUSE-SU-2026:0741-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0741-1 advisory. shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols -...

6.7CVSS6.1AI score0.00378EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/03/02 8:11 a.m.4 views

Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: shimstartimage: fix guid/handle pairing when uninstalling protocols Fix uncompressed ipv6 netboot fix test segfaults caused by uninitialized memory SbatLevelVariable.txt: minor typo fix. Realloc needs to allocate on...

6.7CVSS6AI score0.00378EPSS
Exploits1References6
Rows per page
Query Builder