Lucene search
K

65 matches found

Cvelist
Cvelist
added 2026/06/25 8:39 a.m.31 views

CVE-2026-53268 netfilter: conntrack_irc: fix possible out-of-bounds read

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrackirc: fix possible out-of-bounds read When parsing fails after we've matched the command string we should bail out instead of trying to match a different command. This helper should be deprecated, given...

8.2CVSS0.00364EPSS
Exploits0References8
CVE
CVE
added 2026/06/12 6:51 p.m.23 views

CVE-2026-50552

Koel (open-source music streaming) is affected prior to version 9.7.1 by a Server-Side Request Forgery (SSRF) in the radio station creation endpoint (POST /api/radio/stations). The url validation rules are declared without bail, allowing the HasAudioContentType rule to issue HTTP requests even af...

6.3CVSS5.5AI score0.0016EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/26 2:1 p.m.14 views

Malicious code in saturn-bail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a29ae44bbeeb4d31d176d78d669615e7a508bd236620cc3724478100f9b6997 saturn-bail is a Baileys-derivative WhatsApp library that, on every makeWASocket call, schedules a 90-second timer which executes...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/26 2:1 p.m.14 views

MAL-2026-4818 Malicious code in saturn-bail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a29ae44bbeeb4d31d176d78d669615e7a508bd236620cc3724478100f9b6997 saturn-bail is a Baileys-derivative WhatsApp library that, on every makeWASocket call, schedules a 90-second timer which executes...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/20 10:9 a.m.8 views

CLSA-2026-1779271781 vim: Fix of 6 CVEs

CVE-2022-4292: also check winvalidanytab in didsetspelllang after SpellFileMissing autocmd - CVE-2023-4751: resetVIsualandresel at start of exbufferall to prevent UAF on Visual mark - CVE-2023-0054: bail out of dostringsub when vimregsub returns sublen = 0 - CVE-2022-2206: clamp cmdlinerow/msgrow...

7.8CVSS6.7AI score0.01352EPSS
Exploits6References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Allowing devdata==NULL in intelbiosencodersupportsdpdualmode. If we don’t have a VBT, or if the VBT did not declare the encoder, we won’t have the “devdata” for that encoder. Instead of throwing an error, we should...

5.5CVSS6.2AI score0.00222EPSS
Exploits0References2
Trellix
Trellix
added 2026/02/11 12:0 a.m.10 views

Dark Web Roast - January 2026 Edition

Dark Web Roast - January 2026 Edition By Trellix Advanced Research Center · February 11, 2026 Executive Summary Welcome to January 2026's underground intelligence roundup, where criminal masterminds continue to demonstrate that the phrase "honour among thieves" remains the greatest oxymoron in...

5.4AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-7188

Malware in sbrugna...

5.4CVSS6.4AI score0.00292EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-7674

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-7306

Malware in sbrugna...

5.4CVSS6.4AI score0.00292EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-7605

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7386

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/09/04 11:24 p.m.4 views

SUSE CVE-2025-38678

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates A chain/flowtable update with duplicated devices in the same batch is possible. Unfortunately, netdev event path only removes the first device that is found, leaving...

7.1CVSS6.5AI score0.00202EPSS
Exploits1References96
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/03 4:41 p.m.6 views

Malicious code in @im-dims/bail (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/12/27 3:15 p.m.3 views

DEBIAN-CVE-2024-56595

In the Linux kernel, the following vulnerability has been resolved: jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree When the value of lp is 0 at the beginning of the for loop, it will become negative in the next assignment and we should bail out...

7.8CVSS5.7AI score0.00257EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.157 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2519)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : bpf, skmsg: Fix NULL pointer dereference in skpsockskbingressenqueueCVE-2024-36938 bpf, sockmap: Prevent lock inversion deadlock in map delete...

9.8CVSS7AI score0.02701EPSS
Exploits3References228
The Hacker News
The Hacker News
added 2024/09/24 6:33 a.m.21 views

Telegram Agrees to Share User Data With Authorities for Criminal Investigations

In a major policy reversal, the popular messaging app Telegram has announced it will give users' IP addresses and phone numbers to authorities in response to valid legal requests in an attempt to rein in criminal activity on the platform. "We've made it clear that the IP addresses and phone numbe...

7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.9 views

SUSE CVE-2024-26938

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Tolerate devdata==NULL in intelbiosencodersupportsdpdualmode If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early. We...

3.3CVSS6.4AI score0.00222EPSS
Exploits0References16
Vulnrichment
Vulnrichment
added 2024/04/04 8:20 a.m.20 views

CVE-2024-26784 pmdomain: arm: Fix NULL dereference on scmi_perf_domain removal

In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: Fix NULL dereference on scmiperfdomain removal On unloading of the scmiperfdomain module got the below splat, when in the DT provided to the system under test the 'power-domain-cells' property was missing. Indeed,...

6.8AI score0.00195EPSS
Exploits0References2
Prion
Prion
added 2023/10/12 1:15 p.m.15 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...

6.8CVSS8.8AI score0.00214EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder