Lucene search
K

253672 matches found

OSV
OSV
added 2026/05/05 3:51 p.m.9 views

JLSEC-2026-445

Buffer Overflow vulnerability in oneonemapping function in progs/dumpentry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command...

6.5CVSS6.1AI score0.01403EPSS
Exploits1References16
OSV
OSV
added 2026/05/05 3:51 p.m.8 views

JLSEC-2026-450

Buffer Overflow vulnerability in ncfindentry in tinfo/comphash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command...

6.5CVSS6.1AI score0.01403EPSS
Exploits1References16
EUVD
EUVD
added 2026/05/05 3:31 p.m.18 views

EUVD-2026-27333

A security vulnerability has been detected in EFM ipTIME NAS1dual 1.5.24. This issue affects the function getcsrfwhites of the file /cgi/advanced/miscmain.cgi. Such manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and...

10CVSS7.7AI score0.0063EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/05 1:45 p.m.9 views

CVE-2026-7834

A security vulnerability has been detected in EFM ipTIME NAS1dual 1.5.24. This issue affects the function getcsrfwhites of the file /cgi/advanced/miscmain.cgi. Such manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and...

10CVSS7.7AI score0.0063EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/05 1:45 p.m.47 views

CVE-2026-7834 EFM ipTIME NAS1dual misc_main.cgi get_csrf_whites stack-based overflow

A security vulnerability has been detected in EFM ipTIME NAS1dual 1.5.24. This issue affects the function getcsrfwhites of the file /cgi/advanced/miscmain.cgi. Such manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and...

10CVSS0.0063EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/05 10:38 a.m.10 views

NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

A flaw was found in NGINX. A remote attacker can exploit a buffer overflow vulnerability within the ngxhttpdavmodule module. This occurs when the NGINX configuration uses DAV module MOVE or COPY methods in conjunction with prefix location and alias directives. Successful exploitation may lead to...

8.8CVSS6AI score0.21621EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/05 10:38 a.m.12 views

Important: Red Hat Security Advisory: nginx security update

An update for nginx is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS7.7AI score0.21621EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/05 8:41 a.m.10 views

NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

A flaw was found in NGINX. A remote attacker can exploit a buffer overflow vulnerability within the ngxhttpdavmodule module. This occurs when the NGINX configuration uses DAV module MOVE or COPY methods in conjunction with prefix location and alias directives. Successful exploitation may lead to...

8.8CVSS6AI score0.21621EPSS
Exploits0References5
OSV
OSV
added 2026/05/05 8:27 a.m.7 views

CLSA-2026-1777969446 binutils: Fix of 8 CVEs

CVE-2021-45078: fix heap-based buffer overflow in stabxcoffbuiltintype - CVE-2021-46174: fix buffer overflow in readsectionstabsdebugginginfo - CVE-2022-44840: fix heap buffer overflow in findsectioninset - CVE-2022-45703: fix heap buffer overflow in displaygdbindex - CVE-2022-47695: fix...

7.8CVSS7AI score0.01312EPSS
Exploits8References1
RedHat Linux
RedHat Linux
added 2026/05/05 5:31 a.m.7 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

6.1AI score0.00154EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/05 3:1 a.m.10 views

Security Bulletin: Location Service for ESRI Component uses cryptography-46.0.6, pyasn1-0.6.2, requests-2.32.5 and cryptography-46.0.5 library which were vulnerable to multiple CVEs

Summary Location Service for ESRI Component uses cryptography-46.0.6, pyasn1-0.6.2, requests-2.32.5 and cryptography-46.0.5 library which were vulnerable to CVE-2026-39892, CVE-2026-30922, CVE-2026-25645 and CVE-2026-34073 respectively. Vulnerability Details CVEID:CVE-2026-30922 DESCRIPTION: pyas...

9.8CVSS6.8AI score0.00652EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/05 2:20 a.m.6 views

CVE-2026-7675

A vulnerability has been found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8. Impacted is the function startlan of the file /apply.cgi. The manipulation of the argument Channel/ApCliSsid leads to buffer overflow. The attack is possible to be carried out remotely. The exploit has been...

9CVSS7.6AI score0.00702EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/05 1:49 a.m.7 views

SUSE CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

7CVSS5.8AI score0.00383EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.9 views

SUSE CVE-2026-42483

A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The issue affects modulehashdecode in multiple Kerberos-related modules because accountinfolen is...

9.8CVSS6.4AI score0.00304EPSS
Exploits1References3
OSV
OSV
added 2026/05/05 12:30 a.m.6 views

CLSA-2026-1777941038 LibRaw: Fix of CVE-2026-21413

CVE-2026-21413: fix heap-based buffer overflow in LibRaw::losslessjpegloadraw by adding unsignedcol rawwidth bounds check before the RAWrow, col write...

9.8CVSS6AI score0.00746EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-37061

Name of the Vulnerable Software and Affected Versions GPAC versions prior to commit v391dc7f4d234988ea0bc3cc294eb725eddf8f702 Description A buffer overflow allows an attacker to cause a denial of service. This issue occurs within the src/scenegraph/svg attributes.c file, specifically involving th...

5.5CVSS6.1AI score0.00111EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-39103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in GPAC before commit v391dc7f4d234988ea0bc3cc294eb725eddf8f702 allows an attacker to cause a denial of service via the...

5.5CVSS5.8AI score0.00111EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.6 views

SUSE SLES16 Security Update : ntfs-3g_ntfsprogs (SUSE-SU-2026:21432-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:21432-1 advisory. This update for ntfs-3gntfsprogs fixes the following issue: - CVE-2026-40706: heap buffer overflow in ntfsbuildpermissionsposix in acls.c...

8.4CVSS6AI score0.00165EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.10 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a buffer overflow vulnerability, which was caused by a V8 object lifecycle issue. This vulnerability could allow remote attackers to execute out-of-bound memory reads through special...

4.3CVSS6.2AI score0.00193EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.11 views

D-Link DI-8100 缓冲区错误漏洞

The D-Link DI-8100 is a wireless broadband router designed for small and medium-sized network environments by D-Link Corporation. The D-Link DI-8100 version 16.07.26A1 contains a buffer error vulnerability. This vulnerability arises from the function sprintf in the file yyxz.asp, where the handli...

8.6CVSS7.3AI score0.0408EPSS
Exploits1References1
Rows per page
Query Builder