Lucene search
K

61 matches found

SUSE CVE
SUSE CVE
added 2026/05/08 2:21 a.m.10 views

SUSE CVE-2026-42216

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, IDManifest::init reconstructs strings from a prefix-compressed...

8.2CVSS5.8AI score0.00354EPSS
Exploits1References4
OSV
OSV
added 2026/05/07 4:16 a.m.7 views

UBUNTU-CVE-2026-44603

Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007...

9.1CVSS5.8AI score0.00342EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/07 12:0 a.m.12 views

CVE-2026-44603

Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007...

9.1CVSS5.8AI score0.00342EPSS
Exploits0References5
OSV
OSV
added 2026/04/24 1:16 p.m.9 views

JLSEC-2026-184

GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximately 11 whitespace...

5.5CVSS6.1AI score0.04524EPSS
Exploits1References8
EUVD
EUVD
added 2026/03/20 12:31 a.m.9 views

EUVD-2026-13233

1-byte OOB heap read in wcPKCS7DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wcPKCS7DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted...

2.1CVSS5.8AI score0.00095EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/19 10:16 p.m.5 views

CVE-2026-4159

1-byte OOB heap read in wcPKCS7DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wcPKCS7DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted...

3.3CVSS5.8AI score0.00095EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/19 9:17 p.m.3 views

CVE-2026-4159 wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read

1-byte OOB heap read in wcPKCS7DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wcPKCS7DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted...

2.1CVSS5.8AI score0.00095EPSS
Exploits0References1
CVE
CVE
added 2026/03/19 9:17 p.m.21 views

CVE-2026-4159

CVE-2026-4159: A 1-byte out-of-bounds heap read in wolfSSL’s wc_PKCS7_DecodeEnvelopedData can be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Affected software: wolfSSL 5.8.4 and earlier; root cause is a 1-byte OOB read during enveloped data decoding. Impac...

3.3CVSS5.8AI score0.00095EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.11 views

PT-2026-26376

Name of the Vulnerable Software and Affected Versions wolfSSL versions 5.8.4 and earlier Description An out-of-bounds heap read issue exists in the wc PKCS7 DecodeEnvelopedData function when processing crafted CMS EnvelopedData messages containing zero-length encrypted content. This issue could...

3.3CVSS5.1AI score0.00095EPSS
Exploits0References9
NVD
NVD
added 2026/02/18 4:22 p.m.7 views

CVE-2025-71229

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Fix alignment fault in rtwcoreenablebeacon rtwcoreenablebeacon reads 4 bytes from an address that is not a multiple of 4. This results in a crash on some systems. Do 1 byte reads/writes instead. Unable to handle kern...

5.5CVSS0.00118EPSS
Exploits0References5
Snyk
Snyk
added 2026/01/27 4:49 p.m.5 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions causing an invalid read of a single byte. An attacker who can convince an application to accept and process an untrusted PKCS12 file can cause denial of service. Remediation Upgrade...

7.1CVSS5.9AI score0.00261EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-68760

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/amd: Fix potential out-of-bounds read in iommummioshow In iommummiowrite, it validates the user-provided offset with the check: iommu-dbgmmiooffset...

6AI score0.00155EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.6 views

SUSE CVE-2025-68760

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential out-of-bounds read in iommummioshow In iommummiowrite, it validates the user-provided offset with the check: iommu-dbgmmiooffset iommu-mmiophysend - 4. This assumes a 4-byte access. However, the...

6.1CVSS6.4AI score0.00155EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2022-48303)

GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to change the flow of control has not been demonstrated. The issue occurs in fromheader in list.c via a V7 archive in which mtime has approximately 11 whitespace...

5.5CVSS6.7AI score0.04524EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.3 views

Siemens SIMATIC Devices Out-of-bounds Read (CVE-2023-3773)

A flaw was found in the Linux kernel's IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.3AI score0.00237EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/15 2:11 p.m.7 views

EUVD-2025-34620

In NetX Duo version before 6.4.4, the component of Eclipse Foundation ThreadX, there was an incorrect bound check resulting it out by two out of bound read...

6.9CVSS6.4AI score0.00234EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/06 8:2 a.m.6 views

media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format()

...

7.1CVSS6.8AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:20 a.m.3 views

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.

...

6.5CVSS7AI score0.00823EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.3 views

PT-2025-35953

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the uvc parse format function within the uvcvideo module. A buffer length check only ensured a minimum buffer size of 3 bytes, while the function...

7.1CVSS7.2AI score0.00164EPSS
Exploits0
OSV
OSV
added 2024/12/27 2:46 p.m.9 views

CLSA-2024-1735310784 Fix CVE(s): CVE-2024-11233

SECURITY UPDATE: Out-of-bounds read in quoted-printable decoder - debian/patches/CVE-2024-11233.patch: Fix buffer handling in convert.quoted-printable-decode filter to prevent one-byte out-of-bounds read - CVE-2024-11233...

8.2CVSS6.3AI score0.01618EPSS
Exploits1References1
Rows per page
Query Builder