Lucene search
K

11776 matches found

Microsoft CVE
Microsoft CVE
added 2026/04/14 2:0 p.m.6 views

Windows Kernel Memory Information Disclosure Vulnerability

Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally...

6.1CVSS6.2AI score0.02418EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.3 views

PT-2026-32761

🪟 Projected File System EoP CVE-2026-26184 — because nothing says “safe sharing” like letting Windows privilege itself. Patch now: thin details = attackers fill in the blanks. https://t.co/6drID0tklA WindowsSecurity PrivilegeEscalation ProjectedFileSystem Cve202626184 https://t.co/tM3GbnJNon...

7.8CVSS6.2AI score0.0024EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/04/09 9:50 p.m.4 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS5.4AI score0.00228EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/09 9:50 p.m.26 views

CVE-2026-5772 MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

2.1CVSS0.00228EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.7 views

PT-2026-31812

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A 1-byte stack buffer over-read exists in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFT MOST WILDCARD ONLY flag is active. If a wildcard exhausts the entire...

2.1CVSS6AI score0.00228EPSS
Exploits0References4
OSV
OSV
added 2026/04/08 1:30 p.m.14 views

CLSA-2026-1775649722 libxml2: Fix of 6 CVEs

CVE-2024-34459: fix buffer over-read in xmlHTMLPrintFileContext in xmllint - CVE-2025-8732: fix stack overflow from self-referencing SGML CATALOG entries - CVE-2026-0989: add RelaxNG include recursion limit - CVE-2026-0990: prevent infinite recursion in xmlCatalogListXMLResolveURI -...

7.5CVSS6AI score0.02298EPSS
Exploits5References1
Vulnrichment
Vulnrichment
added 2026/04/06 3:33 p.m.2 views

CVE-2026-21381 Buffer Over-read in WLAN Firmware

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection...

7.6CVSS5.9AI score0.00149EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.30 views

CVE-2026-21378 Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...

7.8CVSS0.00075EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.30 views

CVE-2026-21376 Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...

7.8CVSS0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.35 views

CVE-2026-21374 Buffer Over-read in Camera

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation...

7.8CVSS0.00113EPSS
Exploits0References1
CVE
CVE
added 2026/04/06 3:33 p.m.20 views

CVE-2026-21374

CVE-2026-21374 describes memory corruption in the camera path due to insufficient buffer size validation when processing auxiliary sensor input/output control commands. The CVE is characterized as a buffer over-read in the camera subsystem, with a CVSSv3.1 base score of 7.8 (HIGH) and a Local att...

7.8CVSS6AI score0.00113EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/04/06 3:33 p.m.12 views

CVE-2026-21373

CVE-2026-21373 describes memory corruption in the camera subsystem occurring when an IOCTL path accesses an output buffer without validating its size. This leads to a potential buffer over-read/overflow, as indicated by the NVD entry. The CVSS v3.1 vector shows a HIGH impact with local attack vec...

7.8CVSS6AI score0.00077EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/04/06 3:33 p.m.16 views

CVE-2026-21367

Technical details such as affected vendors, products, versions, and root cause are not publicly provided in the connected documents. Monitor for updates from Red Hat, ENISA, CVE references, and vendor advisories for concrete remediation information.

7.6CVSS5.9AI score0.00203EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.30 views

CVE-2025-47400 Buffer Over-read in Computer Vision

Cryptographic issue while copying data to a destination buffer without validating its size...

7.1CVSS0.00095EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.7 views

Amazon Linux 2023 : ocaml, ocaml-compiler-libs, ocaml-ocamldoc (ALAS2023-2026-1479)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1479 advisory. In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems fro...

7.9CVSS6.6AI score0.0021EPSS
Exploits0References4
OSV
OSV
added 2026/03/27 7:10 a.m.1 views

BIT-NGINX-GATEWAY-2026-32647 NGINX ngx_http_mp4_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS6.1AI score0.00918EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2026/03/27 12:29 a.m.4 views

SUSE CVE-2026-4887

A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible...

6.1CVSS6AI score0.00634EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/03/18 12:0 a.m.6 views

EulerOS Virtualization 2.13.1 : libpng (EulerOS-SA-2026-1638)

According to the versions of the libpng package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image...

7.1CVSS6.5AI score0.0036EPSS
Exploits5References5
RedHat Linux
RedHat Linux
added 2026/03/17 9:40 a.m.5 views

libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read

A flaw was found in libpng, a reference library for processing PNG Portable Network Graphics image files. A local attacker could exploit a heap buffer over-read vulnerability in the pngimagefinishread function by tricking a user into processing a specially crafted interlaced 16-bit PNG file with ...

7.1CVSS5.9AI score0.00172EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/03/17 9:40 a.m.5 views

libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read

A flaw was found in libpng, a reference library for processing PNG Portable Network Graphics image files. A local attacker could exploit a heap buffer over-read vulnerability in the pngimagefinishread function by tricking a user into processing a specially crafted interlaced 16-bit PNG file with ...

7.1CVSS5.9AI score0.00172EPSS
Exploits1References8
Rows per page
Query Builder