11776 matches found
Windows Kernel Memory Information Disclosure Vulnerability
Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally...
PT-2026-32761
🪟 Projected File System EoP CVE-2026-26184 — because nothing says “safe sharing” like letting Windows privilege itself. Patch now: thin details = attackers fill in the blanks. https://t.co/6drID0tklA WindowsSecurity PrivilegeEscalation ProjectedFileSystem Cve202626184 https://t.co/tM3GbnJNon...
CVE-2026-5772
A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...
CVE-2026-5772 MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation
A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...
PT-2026-31812
Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A 1-byte stack buffer over-read exists in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFT MOST WILDCARD ONLY flag is active. If a wildcard exhausts the entire...
CLSA-2026-1775649722 libxml2: Fix of 6 CVEs
CVE-2024-34459: fix buffer over-read in xmlHTMLPrintFileContext in xmllint - CVE-2025-8732: fix stack overflow from self-referencing SGML CATALOG entries - CVE-2026-0989: add RelaxNG include recursion limit - CVE-2026-0990: prevent infinite recursion in xmlCatalogListXMLResolveURI -...
CVE-2026-21381 Buffer Over-read in WLAN Firmware
Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection...
CVE-2026-21378 Buffer Over-read in Camera
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
CVE-2026-21376 Buffer Over-read in Camera
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
CVE-2026-21374 Buffer Over-read in Camera
Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation...
CVE-2026-21374
CVE-2026-21374 describes memory corruption in the camera path due to insufficient buffer size validation when processing auxiliary sensor input/output control commands. The CVE is characterized as a buffer over-read in the camera subsystem, with a CVSSv3.1 base score of 7.8 (HIGH) and a Local att...
CVE-2026-21373
CVE-2026-21373 describes memory corruption in the camera subsystem occurring when an IOCTL path accesses an output buffer without validating its size. This leads to a potential buffer over-read/overflow, as indicated by the NVD entry. The CVSS v3.1 vector shows a HIGH impact with local attack vec...
CVE-2026-21367
Technical details such as affected vendors, products, versions, and root cause are not publicly provided in the connected documents. Monitor for updates from Red Hat, ENISA, CVE references, and vendor advisories for concrete remediation information.
CVE-2025-47400 Buffer Over-read in Computer Vision
Cryptographic issue while copying data to a destination buffer without validating its size...
Amazon Linux 2023 : ocaml, ocaml-compiler-libs, ocaml-ocamldoc (ALAS2023-2026-1479)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1479 advisory. In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems fro...
BIT-NGINX-GATEWAY-2026-32647 NGINX ngx_http_mp4_module vulnerability
NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...
SUSE CVE-2026-4887
A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible...
EulerOS Virtualization 2.13.1 : libpng (EulerOS-SA-2026-1638)
According to the versions of the libpng package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image...
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
A flaw was found in libpng, a reference library for processing PNG Portable Network Graphics image files. A local attacker could exploit a heap buffer over-read vulnerability in the pngimagefinishread function by tricking a user into processing a specially crafted interlaced 16-bit PNG file with ...
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
A flaw was found in libpng, a reference library for processing PNG Portable Network Graphics image files. A local attacker could exploit a heap buffer over-read vulnerability in the pngimagefinishread function by tricking a user into processing a specially crafted interlaced 16-bit PNG file with ...