Lucene search
K

124 matches found

OSV
OSV
added 2026/02/28 12:45 p.m.8 views

OESA-2026-1461 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

6.3CVSS5.9AI score0.0056EPSS
Exploits1References8
NVD
NVD
added 2026/02/19 7:17 a.m.7 views

CVE-2026-2703

A weakness has been identified in xlnt-community xlnt up to 1.6.1. Impacted is the function xlnt::detail::decodebase64 of the file source/detail/cryptography/base64.cpp of the component Encrypted XLSX File Parser. Executing a manipulation can lead to off-by-one. The attack requires local access...

5.5CVSS0.00209EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.10 views

PT-2026-20595

Name of the Vulnerable Software and Affected Versions xlnt versions up to 1.6.1 Description A flaw exists in the xlnt::detail::decode base64 function within the Encrypted XLSX File Parser component, specifically in the source/detail/cryptography/base64.cpp file. This can lead to an off-by-one...

4.8CVSS4.3AI score0.00209EPSS
Exploits1References10
OSV
OSV
added 2026/02/13 1:16 p.m.6 views

OESA-2026-1356 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

6.3CVSS5.7AI score0.0056EPSS
Exploits1References6
EUVD
EUVD
added 2026/02/06 11:2 a.m.5 views

EUVD-2026-5685

A security vulnerability has been detected in happyfish100 libfastcommon up to 1.0.84. Affected by this vulnerability is the function base64decode of the file src/base64.c. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has bee...

5.3CVSS5.6AI score0.00259EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2026/02/06 11:2 a.m.5 views

CVE-2026-2016 happyfish100 libfastcommon base64.c base64_decode stack-based overflow

A security vulnerability has been detected in happyfish100 libfastcommon up to 1.0.84. Affected by this vulnerability is the function base64decode of the file src/base64.c. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has bee...

5.3CVSS5.3AI score0.00259EPSS
Exploits1References8
CVE
CVE
added 2026/02/06 11:2 a.m.16 views

CVE-2026-2016

CVE-2026-2016 affects happyfish100 libfastcommon up to version 1.0.84. The vulnerability is in the base64_decode function in src/base64.c, causing a stack-based buffer overflow. Local access is required to exploit. Public disclosure of the exploit is noted. The patch identifier is 82f66af3e252e3e...

7.8CVSS5.3AI score0.00259EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2026/02/06 11:2 a.m.34 views

CVE-2026-2016 happyfish100 libfastcommon base64.c base64_decode stack-based overflow

A security vulnerability has been detected in happyfish100 libfastcommon up to 1.0.84. Affected by this vulnerability is the function base64decode of the file src/base64.c. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has bee...

5.3CVSS0.00259EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.7 views

libfastcommon 安全漏洞

libfastcommon is a C language code library developed by YuQing personally. Versions of libfastcommon prior to 1.0.84 contained security vulnerabilities. These vulnerabilities stemmed from incorrect operations on the base64decode function in the src/base64.c file, which could lead to stack-based...

7.8CVSS6.4AI score0.00259EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.11 views

PT-2026-6717

Name of the Vulnerable Software and Affected Versions happyfish100 libfastcommon versions up to 1.0.84 Description A security issue exists in happyfish100 libfastcommon up to version 1.0.84. The base64 decode function within the src/base64.c file is susceptible to a stack-based buffer overflow...

5.3CVSS5.7AI score0.00259EPSS
Exploits1References13
OSV
OSV
added 2026/01/27 6:20 p.m.6 views

MGASA-2026-0021 Updated iperf packages fix security vulnerabilities

In iperf before 3.19.1, iperfauth.c has an off-by-one error and resultant heap-based buffer overflow. CVE-2025-54349 In iperf before 3.19.1, iperfauth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt. CVE-2025-54350...

10CVSS6.1AI score0.00398EPSS
Exploits0References3
Mageia
Mageia
added 2026/01/27 6:20 p.m.5 views

Updated iperf packages fix security vulnerabilities

In iperf before 3.19.1, iperfauth.c has an off-by-one error and resultant heap-based buffer overflow. CVE-2025-54349 In iperf before 3.19.1, iperfauth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt. CVE-2025-54350...

10CVSS6.1AI score0.00398EPSS
Exploits0References2
OSV
OSV
added 2026/01/26 2:49 p.m.15 views

BIT-PYTHON-2025-12781 base64.b64decode() always accepts "+/" characters, despite setting altchars

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.8AI score0.00513EPSS
Exploits1References9
OSV
OSV
added 2026/01/26 2:49 p.m.5 views

BIT-PYTHON-MIN-2025-12781 base64.b64decode() always accepts "+/" characters, despite setting altchars

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.8AI score0.00513EPSS
Exploits1References9
OSV
OSV
added 2026/01/26 2:43 p.m.5 views

BIT-LIBPYTHON-2025-12781 base64.b64decode() always accepts "+/" characters, despite setting altchars

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.8AI score0.00513EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-12781

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the base64 module the characters +/ will always be accepted, regardless...

6.3CVSS6.2AI score0.00513EPSS
Exploits1References4
OSV
OSV
added 2026/01/21 8:16 p.m.5 views

DEBIAN-CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

5.3CVSS5.3AI score0.00513EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/01/21 8:16 p.m.6 views

CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.9AI score0.00513EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/01/21 7:34 p.m.9 views

CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.4AI score0.00513EPSS
Exploits1References9Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/21 7:34 p.m.4 views

CVE-2025-12781 base64.b64decode() always accepts "+/" characters, despite setting altchars

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.4AI score0.00513EPSS
Exploits1References8
Rows per page
Query Builder