Lucene search
K

253623 matches found

NVD
NVD
added 2026/05/11 6:16 p.m.27 views

CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

7.5CVSS0.00933EPSS
Exploits1References10
NVD
NVD
added 2026/05/11 6:16 p.m.15 views

CVE-2026-42859

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

9.3CVSS0.0055EPSS
Exploits0References2
OSV
OSV
added 2026/05/11 6:16 p.m.6 views

DEBIAN-CVE-2026-42859

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

9.3CVSS6AI score0.0055EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/11 6:16 p.m.9 views

CVE-2026-43894

jq is a command-line JSON processor. In 1.8.1 and earlier, when decNumberFromString is given a number literal of INTMAX-1 2147483646 digits, the D2U macro overflows during signed-int arithmetic. The wrapped negative value bypasses the heap-allocation size check, causes the function to use a 30-by...

6.2CVSS5.8AI score0.00158EPSS
Exploits1References2
OSV
OSV
added 2026/05/11 6:16 p.m.4 views

UBUNTU-CVE-2026-43894

jq is a command-line JSON processor. In 1.8.1 and earlier, when decNumberFromString is given a number literal of INTMAX-1 2147483646 digits, the D2U macro overflows during signed-int arithmetic. The wrapped negative value bypasses the heap-allocation size check, causes the function to use a 30-by...

6.2CVSS5.8AI score0.00158EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/11 5:36 p.m.33 views

CVE-2026-42859 Neat VNC: Buffer overflow due to oversized RSA public keys

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

9.3CVSS0.0055EPSS
Exploits0References2
CVE
CVE
added 2026/05/11 5:36 p.m.20 views

CVE-2026-42859

Neat VNC prior to 0.9.6 is affected by a pre-authentication stack buffer overflow in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted handshake (security type 5 or 129) with an oversized client RSA public key, causing ...

9.3CVSS6AI score0.0055EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/11 5:36 p.m.9 views

CVE-2026-42859

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

9.3CVSS6AI score0.0055EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/11 5:36 p.m.10 views

CVE-2026-42859

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

9.3CVSS6AI score0.0055EPSS
Exploits0
CVE
CVE
added 2026/05/11 4:48 p.m.35 views

CVE-2026-5172

dnsmasq has a CVE-2026-5172 vulnerability: a buffer overflow in extract_addresses() can cause a heap out-of-bounds read and crash when processing a malformed DNS response. Exploitation is network-based (no user interaction). Remediation in the public advisories includes upgrading dnsmasq to a fix...

7.5CVSS6AI score0.00933EPSS
Exploits1References10
Cvelist
Cvelist
added 2026/05/11 4:48 p.m.36 views

CVE-2026-5172 CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

0.00933EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:48 p.m.7 views

CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

7.3CVSS6AI score0.00933EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2026/05/11 4:48 p.m.8 views

CVE-2026-5172 CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

6AI score0.00933EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2026/05/11 4:48 p.m.9 views

CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

7.5CVSS6AI score0.00933EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2026/05/11 4:48 p.m.9 views

CVE-2026-5172

A buffer overflow in dnsmasq’s extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record’s end...

7.5CVSS6AI score0.00933EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/05/11 4:22 p.m.9 views

FreeRDP: FreeRDP: Information disclosure and denial of service via heap-buffer-overflow read

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. This vulnerability, a heap-buffer-overflow read, exists in the winpralignedoffsetrecalloc function. A local attacker could exploit this flaw, with user interaction, to read sensitive information from memory, leadin...

8.1CVSS5.7AI score0.00191EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/11 4:22 p.m.9 views

freerdp: FreeRDP: Denial of Service via crafted audio data in RDP

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A remote attacker can exploit a sizet underflow vulnerability in the IMA-ADPCM and MS-ADPCM audio decoders by sending specially crafted audio data over the RDPSND audio channel. This underflow leads to a...

9.8CVSS5.8AI score0.00317EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/05/11 2:16 p.m.12 views

SUSE CVE-2026-8258

A flaw has been found in Squirrel up to 3.2. Impacted is the function validateformat in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead to stack-based buffer overflow. The attack can only be executed locally. The exploit has been published and may be used. The project was...

5.3CVSS6AI score0.00123EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/05/11 12:3 p.m.13 views

freeipmi security update

An update is available for freeipmi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The freeipmi packages contain an Intelligent Platform Management Interface...

7.5CVSS6AI score0.00403EPSS
Exploits0
OSV
OSV
added 2026/05/11 12:3 p.m.8 views

RLSA-2026:14819 Moderate: freeipmi security update

The freeipmi packages contain an Intelligent Platform Management Interface IPMI remote console and system management software based on the IPMI specification. Security Fixes: freeipmi: buffer overflows on response messages via ipmi-oem CVE-2026-33554 For more details about the security issues,...

8.8CVSS6AI score0.00403EPSS
Exploits0References2
Rows per page
Query Builder