Lucene search
K

9 matches found

OSV
OSV
added 2026/06/22 5:47 a.m.3 views

BIT-MONGODB-2026-9753 Server crash via malformed binary diff passed to $_internalApplyOplogUpdate.

The $internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command...

8.1CVSS5.9AI score0.00298EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/11 2:59 a.m.11 views

CVE-2026-9753

The $internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command...

8.1CVSS5.6AI score0.00298EPSS
Exploits0References1
OSV
OSV
added 2026/06/09 11:17 p.m.7 views

UBUNTU-CVE-2026-9753

The $internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command...

8.1CVSS5.5AI score0.00298EPSS
Exploits0References3
MongoDB
MongoDB
added 2026/06/09 10:30 p.m.13 views

Server crash via malformed binary diff passed to $_internalApplyOplogUpdate.

The $internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command...

8.1CVSS5.6AI score0.00298EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/09 10:30 p.m.9 views

CVE-2026-9753 Server crash via malformed binary diff passed to $_internalApplyOplogUpdate.

The $internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command...

8.1CVSS5.6AI score0.00298EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.33 views

PT-2026-48303

Name of the Vulnerable Software and Affected Versions MongoDB affected versions not specified Description An issue exists in the $ internalApplyOplogUpdate aggregation pipeline stage where an authenticated user with access to the aggregate command can execute a document diff containing a malforme...

8.1CVSS5.6AI score0.00298EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2020/03/20 12:0 a.m.23 views

GLSA-202003-44 : Binary diff: Heap-based buffer overflow

The remote host is affected by the vulnerability described in GLSA-202003-44 Binary diff: Heap-based buffer overflow It was discovered that the implementation of bspatch did not check for a negative value on numbers of bytes read from the diff and extra streams. Impact : A remote attacker could...

7.8CVSS8.2AI score0.06762EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2014/10/08 12:0 a.m.24 views

xdelta3 -- buffer overflow vulnerability

Stepan Golosunov reports: Buffer overflow was found and fixed in xdelta3 binary diff tool that allows arbitrary code execution from input files at least on some systems...

8.8CVSS9.2AI score0.04157EPSS
Exploits0References2
exploitpack
exploitpack
added 2012/05/30 12:0 a.m.10 views

Microsoft Wordpad 5.1 - .doc Null Pointer Dereference

Microsoft Wordpad 5.1 - .doc Null Pointer Dereference Microsoft Wordpad 5.1 .doc Null Pointer Dereference Vulnerability Found by condis Tested on Windows XP SP 3 Proffesional PL MS Wordpad 5.1 Compilation 2600.xpsp.080413-2111 SP 3 This isn't bug from CWE 2009-0259 $ Binnary diff of template file...

0.7AI score
Exploits0
Rows per page
Query Builder