Lucene search
K

19 matches found

Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.12 views

PT-2026-42829

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The NewNTUnicodeString function does not check for string length overflow. When provided with a string that exceeds the maximum size of a NTUnicodeString a 16-bi...

9.8CVSS5.9AI score0.00114EPSS
Exploits0References266
OSV
OSV
added 2026/04/27 8:35 p.m.13 views

CLSA-2026-1777322146 jq: Fix of CVE-2026-32316

CVE-2026-32316: fix heap buffer overflow in jvpstringappend and jvpstringcopyreplacebad caused by uint32t overflow in size calculations for strings exceeding INTMAX bytes...

8.2CVSS6AI score0.00484EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2025/11/12 4:28 a.m.3 views

kernel: HID: core: Harden s32ton() against conversion to 0 bits

In the Linux kernel, the following vulnerability has been resolved: HID: core: Harden s32ton against conversion to 0 bits Testing by the syzbot fuzzer showed that the HID core gets a shift-out-of-bounds exception when it tries to convert a 32-bit quantity to a 0-bit quantity. Ideally this should...

7.1CVSS5.7AI score0.0015EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/03 4:0 p.m.3 views

kernel: HID: core: Harden s32ton() against conversion to 0 bits

In the Linux kernel, the following vulnerability has been resolved: HID: core: Harden s32ton against conversion to 0 bits Testing by the syzbot fuzzer showed that the HID core gets a shift-out-of-bounds exception when it tries to convert a 32-bit quantity to a 0-bit quantity. Ideally this should...

7.1CVSS5.7AI score0.0015EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/10/22 12:27 a.m.2 views

kernel: HID: core: Harden s32ton() against conversion to 0 bits

In the Linux kernel, the following vulnerability has been resolved: HID: core: Harden s32ton against conversion to 0 bits Testing by the syzbot fuzzer showed that the HID core gets a shift-out-of-bounds exception when it tries to convert a 32-bit quantity to a 0-bit quantity. Ideally this should...

7.1CVSS5.7AI score0.0015EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/10/13 9:10 a.m.3 views

kernel: HID: core: Harden s32ton() against conversion to 0 bits

In the Linux kernel, the following vulnerability has been resolved: HID: core: Harden s32ton against conversion to 0 bits Testing by the syzbot fuzzer showed that the HID core gets a shift-out-of-bounds exception when it tries to convert a 32-bit quantity to a 0-bit quantity. Ideally this should...

7.1CVSS6.8AI score0.0015EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/16 1:0 p.m.10 views

CVE-2025-39815 RISC-V: KVM: fix stack overrun when loading vlenb

In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: fix stack overrun when loading vlenb The userspace load can put up to 2048 bits into an xlen bit stack buffer. We want only xlen bits, so check the size beforehand...

0.00135EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-6488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The string component in the GNU C Library aka glibc or libc6 through 2.28, when running on the x32 architecture, incorrectly attempts to use a 64-bit register f...

7.8CVSS7.5AI score0.00436EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.4 views

wolfTPM 安全漏洞

wolfTPM is a highly portable TPM library open-sourced by wolfSSL. A security vulnerability exists in wolfTPM, which stems from the fact that exporting an RSA key larger than 2048 bits may result in a stack buffer overflow...

1CVSS7.1AI score0.00137EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: nilfs2: A potential out-of-bounds memory access occurred in nilfsfindentry. Syzbot reported that when searching records in a directory where the isize of an inode is corrupted and has a large value, memory access outside the...

7.8CVSS6.1AI score0.00208EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/16 3:49 a.m.8 views

SUSE CVE-2024-57899

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using oreachsetbitbit, &bits, sizeofchanged BITSPERBYTE, the...

6.1CVSS7.7AI score0.00218EPSS
Exploits0References14
OSV
OSV
added 2025/01/15 1:15 p.m.7 views

AZL-68576 CVE-2024-57899 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using oreachsetbitbit, &bits, sizeofchanged BITSPERBYTE, the...

7.8CVSS6.4AI score0.00218EPSS
Exploits0References1
OSV
OSV
added 2025/01/15 1:15 p.m.1 views

DEBIAN-CVE-2024-57899

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using oreachsetbitbit, &bits, sizeofchanged BITSPERBYTE, the...

7.8CVSS5.9AI score0.00218EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/25 12:0 a.m.10 views

PT-2025-3624

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue is related to the wifi mac80211 component in the Linux kernel, where the size of an unsigned long is 4 bytes on 32-bit systems, while a u64 is 8 bytes. This leads to incorrect bit...

7.8CVSS7AI score0.00218EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/08/08 5:22 p.m.7 views

bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

A flaw was found in the Bouncy Castle Java cryptography APIs. Affected versions of the org.bouncycastle:bcprov-jdk18on package are vulnerable to Observable Timing Discrepancy via the PKCS1 1.5 and OAEP decryption process a.k.a. Marvin Attack. An attacker can recover cipher-texts via a side-channe...

5.9CVSS7.3AI score0.00901EPSS
Exploits0References5
OSV
OSV
added 2023/08/02 8:15 p.m.5 views

AZL-27812 CVE-2023-29409 affecting package golang for versions less than 1.20.7-1

Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three...

5.3CVSS6.7AI score0.01328EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/12/21 12:0 a.m.1 views

PT-2021-24228 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: Gpac version 1.0.1 Description: An infinite loop issue exists in the gf get bit size function of Gpac. Recommendations: For Gpac version 1.0.1, consider disabling the gf get bit size function as a temporary workaround until a patch is...

9.8CVSS7.4AI score0.04615EPSS
Exploits98References241
OSV
OSV
added 2018/09/05 7:29 p.m.3 views

DEBIAN-CVE-2018-14618

curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...

9.8CVSS7.4AI score0.10823EPSS
Exploits0References1
Cvelist
Cvelist
added 2011/09/16 2:0 p.m.25 views

CVE-2011-3489

RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service crash via a crafted rna packet with a long string to TCP port 4446 that triggers 1 "a memset zero overflow" or 2 an out-of-bounds read, related to improper handling of ...

6.5AI score0.08977EPSS
Exploits1References4
Rows per page
Query Builder