Lucene search
+L

3657 matches found

NVD
NVD
added 2026/04/24 3:16 p.m.10 views

CVE-2026-31613

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

8.1CVSS0.00378EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.8 views

PT-2026-34965

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the SMB client when parsing symlink error responses. When a CREATE request returns STATUS STOPPED ON SYMLINK, the smb2 check message function returns success without...

8.1CVSS5.2AI score0.00378EPSS
Exploits0
EUVD
EUVD
added 2026/04/21 6:4 p.m.6 views

EUVD-2026-24229

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, there is a buffer overflow when decoding Opus audio frames due to insufficient buffer size validation in the Opus codec decode path. The FEC decode buffers decframe.buf were allocated based on a...

8.5CVSS6.2AI score0.00224EPSS
Exploits0References2
OSV
OSV
added 2026/04/21 5:8 p.m.9 views

CLSA-2026-1776765273 net-snmp: Fix of CVE-2022-24810

CVE-2022-24810: fix NULL pointer dereference and bounds checking in MIB handlers...

8.8CVSS6.9AI score0.01146EPSS
Exploits0References1
OSV
OSV
added 2026/04/21 10:1 a.m.20 views

CLSA-2026-1776765662 net-snmp: Fix of CVE-2022-24810

CVE-2022-24810: fix NULL pointer dereference and bounds checking in MIB handlers...

8.8CVSS5.8AI score0.01146EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013128)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013128 advisory. In the Linux kernel, the following vulnerability has been resolved: media: av7110: prevent underflow in writetstodecoder The buf4 value comes from the user via tspla...

5.6AI score0.00195EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007406)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007406 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: Add bounds checking in bitputcs to fix vmalloc-out-of-bounds Add bounds checking to preven...

6AI score0.00171EPSS
Exploits0References4
CNVD
CNVD
added 2026/04/16 12:0 a.m.3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17655)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect bounds checking of parameters in the /xwglref.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00492EPSS
Exploits0
EUVD
EUVD
added 2026/04/10 3:31 p.m.18 views

EUVD-2026-21378

A heap buffer overflow vulnerability exists in the Netwide Assembler NASM due to a lack of bounds checking in the objdirective function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service crash, and...

7.5CVSS6.3AI score0.00357EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/04/10 2:16 p.m.12 views

CVE-2026-6067

A heap buffer overflow vulnerability exists in the Netwide Assembler NASM due to a lack of bounds checking in the objdirective function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service crash, and...

7.5CVSS6.3AI score0.00357EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/10 1:30 p.m.5 views

CVE-2026-6067 CVE-2026-6067

A heap buffer overflow vulnerability exists in the Netwide Assembler NASM due to a lack of bounds checking in the objdirective function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service crash, and...

6.3AI score0.00357EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/10 1:30 p.m.33 views

CVE-2026-6067 CVE-2026-6067

A heap buffer overflow vulnerability exists in the Netwide Assembler NASM due to a lack of bounds checking in the objdirective function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service crash, and...

0.00357EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.15 views

PT-2026-31894

Name of the Vulnerable Software and Affected Versions Notepad++ version 8.9.3 Description A stack-based buffer overflow exists in the file drop handler component. When a user drags and drops a directory path of exactly 259 characters without a trailing backslash, the application appends a backsla...

7.8CVSS6.2AI score0.00166EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.10 views

PT-2026-31917

Name of the Vulnerable Software and Affected Versions Netwide Assembler NASM affected versions not specified Description A heap buffer overflow occurs due to a lack of bounds checking in the obj directive function. This issue can be triggered when assembling a malicious .asm file, which may lead ...

7.5CVSS6AI score0.00357EPSS
Exploits1References16
OSV
OSV
added 2026/04/09 8:16 p.m.1 views

DEBIAN-CVE-2026-5187

Two potential heap out-of-bounds write locations existed in DecodeObjectId in wolfcrypt/src/asn.c. First, a bounds check only validates one available slot before writing two OID arc values out0 and out1, enabling a 2-byte out-of-bounds write when outSz equals 1. Second, multiple callers pass...

9.8CVSS5.3AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/08 5:18 p.m.4 views

CVE-2026-27143

A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially...

9.8CVSS5.9AI score0.00536EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect bounds checking of parameters in the /xwglref.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00492EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/04/07 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-43532

A memory corruption issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing malicious data may lead to unexpect...

2.8CVSS5.8AI score0.00266EPSS
In wildExploits0References2
CVE
CVE
added 2026/04/03 3:16 p.m.107 views

CVE-2026-31402

CVE-2026-31402 affects the Linux kernel NFSv4.0 server (nfsd) via the LOCK replay cache. A large lock owner in a denied LOCK can cause a slab-out-of-bounds write into the 112-byte replay buffer, corrupting adjacent heap memory. The issue can be triggered remotely by two cooperating NFSv4.0 client...

9.8CVSS5.8AI score0.0049EPSS
Exploits0References37Affected Software1
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by improper bounds checking, which may lead to out-of-bound reads...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5
Rows per page
Query Builder