Lucene search
K

253628 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-8258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in Squirrel up to 3.2. Impacted is the function validateformat in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead ...

5.3CVSS6.2AI score0.00123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.14 views

PT-2026-39718

Name of the Vulnerable Software and Affected Versions jq versions prior to 1.8.2 Description A flaw exists in the decNumberFromString function when processing a number literal containing 2147483646 digits. This causes the D2U macro to overflow during signed-int arithmetic, leading to a wrapped...

7.3CVSS6AI score0.00158EPSS
Exploits3References38
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

RHEL 9 : nginx (RHSA-2026:15942)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:15942 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage...

8.8CVSS7.7AI score0.21621EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: openvswitch (UTSA-2026-017643)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017643 advisory. Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and...

9.8CVSS7.7AI score0.05493EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.9 views

PT-2026-39761

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause unexpected app...

6AI score0.00729EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39846

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.5 iPadOS versions prior to 26.5 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 watchOS versions prior to 26.5 Description A buffer overflow occurs when a program writes more data to a memory buffer than...

7.5CVSS6AI score0.00417EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.10 views

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. Vulnerabilities exist in versions of Apple macOS such as Sequoia 15.7.7, Sonoma 14.8.7, and Tahoe 26.5. These vulnerabilities are due to buffer overflow issues, which may cause the application...

7.5CVSS6AI score0.00438EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-5244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in Cesanta Mongoose up to 7.20. This affects the function mgtlsrecvcert of the file mongoose.c of the component TLS 1.3 Handler...

9.8CVSS6.9AI score0.00727EPSS
Exploits1References3
OSV
OSV
added 2026/05/11 12:0 a.m.5 views

ALSA-2026:16014 Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service via heap use-after-free during...

9.8CVSS6.4AI score0.00599EPSS
Exploits7References22
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39763

Name of the Vulnerable Software and Affected Versions macOS Sequoia versions prior to 15.7.7 macOS Tahoe versions prior to 26.5 Description A buffer overflow, which occurs when data exceeds the allocated memory boundary, was addressed with improved bounds checking. A remote attacker may be able t...

7.5CVSS5.9AI score0.00541EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-5172

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow in dnsmasq's extractaddresses function allows an attacker to trigger a heap out-of- bounds read and crash by exploiting a malformed DNS...

7.5CVSS5.8AI score0.00933EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: redis (UTSA-2026-017593)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017593 advisory. Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debuggers...

5.3CVSS6.7AI score0.01702EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.5 views

Linux kernel 缓冲区错误漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. The Linux kernel has a buffer error vulnerability, which stems from the lack of separation of paginated fragments during the processing of DATA and RESPONSE packets in...

7.8CVSS6.2AI score0.92766EPSS
Exploits20References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.7 views

DNSmasq 安全漏洞

DNSmasq is a DNS configuration tool developed by Simon Kelley. DNSmasq has a security vulnerability, which stems from a buffer overflow in the extractaddresses function. This vulnerability allows attackers to trigger heap-based out-of-bounds reads by exploiting malformed DNS responses, causing a...

7.3CVSS6AI score0.00933EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

MiracleLinux 9 : freeipmi-1.6.17-1.el9_7 (AXSA:2026-584:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-584:01 advisory. freeipmi: buffer overflows on response messages via ipmi-oem CVE-2026-33554 Tenable has extracted the preceding description block directly from the MiracleLin...

7.5CVSS5.9AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-25887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in mgresolvefromhostsfile in Mongoose 6.18, when reading from a crafted hosts file. CVE-2020-25887 Note that Nessus relies on the presence of th...

8.8CVSS5.9AI score0.00605EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.11 views

Unity Linux 20.1060e / 20.1070e Security Update: openjpeg2 (UTSA-2026-017502)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017502 advisory. A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some case...

7.8CVSS7.3AI score0.02008EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-51495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can...

7.5CVSS6.2AI score0.00395EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Neat VNC 安全漏洞

Neat VNC is a freely licensed VNC server library developed by Andri Yngvason. Versions of Neat VNC prior to 0.9.6 contained security vulnerabilities. These vulnerabilities stemmed from a buffer overflow in the RSA-AES security processor, which could allow unauthenticated remote attackers to cause...

9.3CVSS6.1AI score0.0055EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2026/05/11 12:0 a.m.12 views

freerdp security update

2:3.10.3-5.8 - Fix double free in xfrailwindowcommon cleanup CVE-2026-26986 - Fix clipboard use-after-free during auto-reconnect CVE-2026-25997 - Fix heap-buffer-overflow in bitmapcacheput CVE-2026-29775 - Add DSP format checks CVE-2026-31884 - Fix DSP array bounds checks CVE-2026-31883 - Fix DSP...

9.8CVSS5.8AI score0.00599EPSS
Exploits7
Rows per page
Query Builder