Lucene search
K

253659 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/06 1:40 p.m.6 views

CVE-2026-41287

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS5.8AI score0.00213EPSS
Exploits0References2
CVE
CVE
added 2026/05/06 1:40 p.m.13 views

CVE-2026-41287

CVE-2026-41287 is a stack-based buffer overflow in the WatchGuard Agent Discovery Service on Windows that allows an unauthenticated, adjacent attacker to crash the agent service, producing a Denial of Service. Documented impact is high (CVSS 4.0 base score 7.1) with availability as the primary co...

7.1CVSS5.8AI score0.00213EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/06 1:40 p.m.33 views

CVE-2026-41287 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant A

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS0.00213EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2026/05/06 1:27 p.m.8 views

Critical Buffer Overflow in Palo Alto Networks PAN-OS User-ID Authentication Portal (CVE-2026-0300)

Overview On May 6, 2026, Palo Alto Networks published a security advisory for CVE-2026-0300, a critical unauthenticated buffer overflow vulnerability affecting PAN-OS PA-Series and VM-Series firewall appliances. Prisma Access, Cloud NGFW, and Panorama appliances are not affected by this...

9.8CVSS6.8AI score0.36157EPSS
Exploits6
Wiz blog
Wiz blog
added 2026/05/06 12:33 p.m.8 views

Critical Buffer Overflow Vulnerability in PAN-OS Exploited in-the-Wild

Detect and mitigate CVE-2026-0300, a critical vulnerability in Palo Alto Networks PAN-OS User-ID Authentication Portal that allows unauthenticated attackers to achieve remote code execution RCE with root privileges...

9.8CVSS6.7AI score0.36157EPSS
Exploits6
EUVD
EUVD
added 2026/05/06 12:30 p.m.9 views

EUVD-2026-27688

In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree. Add length...

6.1AI score0.00411EPSS
Exploits0References5
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43125

In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree. Add length...

9.8CVSS0.00411EPSS
Exploits0References12
Rockylinux
Rockylinux
added 2026/05/06 12:5 p.m.9 views

freeipmi security update

An update is available for freeipmi. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The freeipmi packages contain an Intelligent Platform Management Interface...

7.5CVSS6AI score0.00403EPSS
Exploits0
OSV
OSV
added 2026/05/06 12:5 p.m.6 views

RLSA-2026:13515 Moderate: freeipmi security update

The freeipmi packages contain an Intelligent Platform Management Interface IPMI remote console and system management software based on the IPMI specification. Security Fixes: freeipmi: buffer overflows on response messages via ipmi-oem CVE-2026-33554 For more details about the security issues,...

8.8CVSS6AI score0.00403EPSS
Exploits0References2
OSV
OSV
added 2026/05/06 11:47 a.m.9 views

CLSA-2026-1778009078 vim: Fix of 5 CVEs

CVE-2022-2125: fix out-of-bounds read in getlispindent; break out of the inner loop on NUL byte indent.c, upstream patch 8.2.5122 - CVE-2021-3974: fix use-after-free in nfaregmatch when a substitute callback frees the regline during a mark comparison; save col and re-fetch rex.line via reggetline...

7.8CVSS7.2AI score0.01554EPSS
Exploits5References1
NCSC
NCSC
added 2026/05/06 11:33 a.m.10 views

Vulnerabilities in Apache HTTP Server

The Apache Software Foundation has addressed several vulnerabilities in Apache HTTP Server. These vulnerabilities concern various modules and functions within Apache HTTP Server. The most serious vulnerability relates to a double-free in the HTTP/2 implementation, which allows an attacker to...

9.8CVSS7.9AI score0.4581EPSS
Exploits18References1
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.29 views

CVE-2026-43266 EFI/CPER: don't go past the ARM processor CPER record buffer

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

0.00119EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.29 views

CVE-2026-43185 ksmbd: fix signededness bug in smb_direct_prepare_negotiation()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS0.00622EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 11:27 a.m.18 views

CVE-2026-43185

In Linux kernel ksmbd, a signedness bug in smb_direct_prepare_negotiation() casts unsigned __u32 values from sp->max_recv_size and req->preferred_send_size to signed int before min_t(). A crafted preferred_send_size of 0x80000000 can be treated as smaller than max_recv_size, enabling a subs...

9.8CVSS5.8AI score0.00622EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:27 a.m.9 views

CVE-2026-43125

In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree. Add length...

6.1AI score0.00411EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/06 11:27 a.m.27 views

CVE-2026-43125

CVE-2026-43125 affects the Linux kernel dlm module. The vulnerability stems from unvalidated length in dlm_dump_rsb_name() coming from network messages, allowing an out-of-bounds write in dlm_search_rsb_tree() when the length exceeds DLM_RESNAME_MAXLEN. This could enable denial of service and, in...

9.8CVSS6.1AI score0.00411EPSS
Exploits0References12Affected Software1
NCSC
NCSC
added 2026/05/06 8:42 a.m.8 views

Vulnerability handling in Palo Alto Networks PAN-OS

Palo Alto Networks has identified a vulnerability in PAN-OS, specifically in the User-ID Authentication Portal component of the PA-Series and VM-Series firewalls. The vulnerability involves a buffer overflow in the User-ID Authentication Portal, allowing unauthenticated attackers to execute...

9.8CVSS6.7AI score0.36157EPSS
Exploits6References1
RedHat Linux
RedHat Linux
added 2026/05/06 7:3 a.m.9 views

capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

A flaw was found in Capstone, a disassembly framework. A local attacker could exploit a heap buffer overflow vulnerability by providing a specially crafted skipdata callback. This flaw occurs because the skipdata length is not properly bounds-checked, which may allow an attacker to write beyond...

7.8CVSS7.7AI score0.00191EPSS
Exploits1References6
The Hacker News
The Hacker News
added 2026/05/06 6:14 a.m.20 views

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Palo Alto Networks has released an advisory warning that a critical buffer overflow vulnerability in its PAN-OS software has been exploited in the wild. The vulnerability, tracked as CVE-2026-0300 , has been described as a case of unauthenticated remote code execution. It carries a CVSS score of...

9.3CVSS6.8AI score0.36157EPSS
Exploits6
SUSE CVE
SUSE CVE
added 2026/05/06 1:44 a.m.10 views

SUSE CVE-2026-28780

Heap-based Buffer Overflow vulnerability in modproxyajp of Apache HTTP Server. If modproxyajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to modproxyajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer. This issue...

6.5CVSS5.8AI score0.01325EPSS
Exploits0References8
Rows per page
Query Builder