Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2026/06/19 7:26 a.m.11 views

CVE-2026-11463

A security flaw has been identified in the USCiLab Cereal library that could affect the security and stability of applications utilizing it. Mitigation Since the vulnerability is triggered by processing malicious payloads, immediately restrict network access or input mechanisms that allow...

7.5CVSS7AI score0.00313EPSS
Exploits0References10
EUVD
EUVD
added 2026/06/08 12:30 a.m.15 views

EUVD-2026-34994

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS5.1AI score0.00313EPSS
Exploits0References8
NVD
NVD
added 2026/06/07 11:16 p.m.10 views

CVE-2026-11463

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS0.00313EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/06/07 10:15 p.m.8 views

CVE-2026-11463 USCiLab Cereal Shared Pointer type confusion

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS5.1AI score0.00313EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/06/07 10:15 p.m.7 views

CVE-2026-11463

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS6.8AI score0.00313EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/06/07 10:15 p.m.31 views

CVE-2026-11463 USCiLab Cereal Shared Pointer type confusion

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS0.00313EPSS
Exploits0References7
CVE
CVE
added 2026/06/07 10:15 p.m.30 views

CVE-2026-11463

USCiLab Cereal

7.5CVSS6.8AI score0.00313EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/07 12:0 a.m.18 views

PT-2026-47191

Name of the Vulnerable Software and Affected Versions USCiLab Cereal versions prior to 1.3.3 Description A type confusion issue exists within the Shared Pointer Handler component. A remote attacker can execute a manipulation to trigger this condition, which occurs when a program accesses a resour...

7.5CVSS7.3AI score0.00313EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/06/07 12:0 a.m.10 views

cereal 安全漏洞

Cereal is an open-source C++11 serialization library developed by iLab at USC. It supports binary, XML, and JSON formats. Versions of Cereal 1.3.2 and earlier contain security vulnerabilities. These vulnerabilities stem from unknown functions in the Shared Pointer Handler component, which may lea...

7.5CVSS7.3AI score0.00313EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3463

Malware in sbrugna...

9.8CVSS9.1AI score0.01977EPSS
Exploits1References3
OSV
OSV
added 2024/06/15 12:0 a.m.9 views

OPENSUSE-SU-2024:12197-1 cereal-devel-1.3.2-1.1 on GA media

These are all security issues fixed in the cereal-devel-1.3.2-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS9.7AI score0.01977EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/31 12:0 a.m.3 views

USC iLab cereal buffer overflow vulnerability

USC iLab cereal is a C++ library for serialization. A security vulnerability exists in USC iLab cereal version 1.3.0 and earlier. An attacker can exploit the vulnerability to obtain sensitive information memory layout or private key...

5.3CVSS6.6AI score0.01534EPSS
Exploits1
CNVD
CNVD
added 2020/03/31 12:0 a.m.2 views

Unspecified Vulnerability in USC iLab cereal

USC iLab cereal is a C++ library for serialization. A security vulnerability exists in USC iLab cereal version 1.3.0 and earlier, which stems from the inability of a serialized 'std::sharedptr' variable to be serialized back to its original value. No details of the vulnerability are provided at...

9.8CVSS6.8AI score0.01977EPSS
Exploits1References1
NVD
NVD
added 2020/03/30 10:15 p.m.26 views

CVE-2020-11104

An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an initialized C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or heap memory, from which sensitive information such as memory layout or private keys can be gleaned if...

5.3CVSS5.2AI score0.01534EPSS
Exploits1References1
NVD
NVD
added 2020/03/30 10:15 p.m.17 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.8CVSS9.4AI score0.01977EPSS
Exploits1References1
OSV
OSV
added 2020/03/30 10:15 p.m.12 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.8CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2020/03/30 10:15 p.m.13 views

CVE-2020-11104

An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an initialized C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or heap memory, from which sensitive information such as memory layout or private keys can be gleaned if...

5.3CVSS6.5AI score
Exploits0References1
Prion
Prion
added 2020/03/30 10:15 p.m.11 views

Stack overflow

An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an initialized C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or heap memory, from which sensitive information such as memory layout or private keys can be gleaned if...

5CVSS5.2AI score0.01534EPSS
Exploits1References1Affected Software1
AlpineLinux
AlpineLinux
added 2020/03/30 10:15 p.m.16 views

CVE-2020-11104

An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an initialized C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or heap memory, from which sensitive information such as memory layout or private keys can be gleaned if...

5.3CVSS1.3AI score0.01534EPSS
Exploits1
Prion
Prion
added 2020/03/30 10:15 p.m.14 views

Design/Logic Flaw

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

7.5CVSS9.3AI score0.01977EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder