Lucene search
K

1621 matches found

CVE
CVE
added 2026/04/05 10:45 a.m.15 views

CVE-2026-5561

CVE-2026-5561 affects Campcodes Complete POS Management and Inventory System up to v4.0.6. The vulnerability targets the Environment Variable Handler inside app/Http/Controllers/SettingsController.php, where an input manipulation can cause injection. The attack is remotely executable and the expl...

6.5CVSS6.3AI score0.00291EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/05 9:30 a.m.5 views

EUVD-2026-19040

A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function addlesson of the file /application/models/Crudmodel.php. This manipulation causes unrestricted upload. It is possible to initiate the attack remotely. The exploit has been published and ma...

6.5CVSS6.3AI score0.00257EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/30 11:32 a.m.7 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsitdecsessionusagecount In iscsitdecsessionusagecount, the function calls complete while holding the sess-sessionusagelock. Similar to the connection usage count logic, the waiter...

8.8CVSS5.7AI score0.0024EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 3:7 p.m.4 views

CVE-2026-4531

A weakness has been identified in Free5GC 4.1.0. Affected is the function HandleRegistrationComplete of the file internal/gmm/handler.go of the component AMF. Executing a manipulation can lead to denial of service. The attack may be performed from remote. This patch is called...

6.9CVSS5.6AI score0.00427EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/22 3:30 a.m.4 views

Free5GC AMF is vulnerable to DoS through its HandleRegistrationComplete function

A weakness has been identified in Free5GC 4.1.0. Affected is the function HandleRegistrationComplete of the file internal/gmm/handler.go of the component AMF. Executing a manipulation can lead to denial of service. The attack may be performed from remote. This patch is called...

6.9CVSS5.7AI score0.00427EPSS
Exploits0References8Affected Software1
Snyk
Snyk
added 2026/03/22 3:30 a.m.4 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the HandleRegistrationComplete function. An attacker can cause a denial of service by sending an out-of-sequence NAS message during the registration procedure. Remediation Upgrade...

6.9CVSS5.8AI score0.00427EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/22 1:32 a.m.32 views

CVE-2026-4531 Free5GC AMF handler.go HandleRegistrationComplete denial of service

A weakness has been identified in Free5GC 4.1.0. Affected is the function HandleRegistrationComplete of the file internal/gmm/handler.go of the component AMF. Executing a manipulation can lead to denial of service. The attack may be performed from remote. This patch is called...

6.9CVSS0.00427EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/22 12:0 a.m.5 views

PT-2026-26958

Name of the Vulnerable Software and Affected Versions Free5GC version 4.1.0 Description A weakness exists in the HandleRegistrationComplete function within the internal/gmm/handler.go file of the AMF component. Exploitation can lead to a denial of service. The attack can be performed remotely...

6.9CVSS6AI score0.00427EPSS
Exploits0References16
CNNVD
CNNVD
added 2026/03/22 12:0 a.m.8 views

free5GC 安全漏洞

Free5GC is an open-source project for the 5th generation 5G mobile core network. Version 4.1.0 of Free5GC contains a security vulnerability. This vulnerability stems from an error in the function HandleRegistrationComplete within the AMF component file internal/gmm/handler.go, which may lead to...

6.9CVSS6AI score0.00427EPSS
Exploits0References7
Rapid7 Blog
Rapid7 Blog
added 2026/03/20 8:3 p.m.13 views

Metasploit Wrap-Up 03/20/2026

♫ I Just Called ♫ To Say ♫ 7f45 4c46 0201 0100 0000 0000 0000 0000 0300 3e00 0100♫ This release contains 2 new exploit modules, 2 enhancements, and 7 bug fixes. Community contributor Chocapikk submitted both exploit modules this release: one targeting AVideo-Encoder’s getImage.php file and anothe...

9.8CVSS7.6AI score0.84417EPSS
Exploits6
OSV
OSV
added 2026/03/20 4:32 a.m.4 views

MAL-2026-1938 Malicious code in @metaplex-foundations/umi-public-keys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48abfc0f902cd0f09b0c2ae7449eaefbf3b4baf1cb12e4165f509b86f7ad8692 The package @metaplex-foundations/umi-public-keys was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/12 2:12 a.m.5 views

Malicious code in react-svg-anchor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e014ccf1aaf52a0f5ad92a977b2fb987b63be3ae7bdf8fa9b5f8813f68040344 The package react-svg-anchor was found to contain malicious code. Source: ghsa-malware d539493dcc209d4d478ffa4a5893cd5cd01ee1d994700b9492b651c8aeb372...

5.7AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/03/11 4:20 p.m.4 views

SUSE CVE-2026-1229

The CombinedMult function in the CIRCL ecc/p384 package secp384r1 curve produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are not affected. The bug was fixed in v1.6.3...

7CVSS5.8AI score0.00397EPSS
Exploits0References7
OSV
OSV
added 2026/03/02 2:33 p.m.3 views

MAL-2026-1115 Malicious code in chai-vest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b92343f543acb60949d618ec06160013b1536a63f3db5431a4e24b1eaac2ccae The package chai-vest was found to contain malicious code. Source: ghsa-malware 2d3a82ac6f8ebd7b7eba324f04e78d43fccef2f3ddf20c24014f4768dc50731d Any...

5.7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/02/25 7:17 p.m.10 views

CIRCL has an incorrect calculation in secp384r1 CombinedMult

The CombinedMult function in the CIRCL ecc/p384 package secp384r1 curve produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are not affected. The bug was fixed in v1.6.3...

9.8CVSS5.4AI score0.00397EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/02/25 7:17 p.m.7 views

EUVD-2026-7384

CIRCL has an incorrect calculation in secp384r1 CombinedMult...

6.3CVSS5.2AI score0.00397EPSS
Exploits0References5
NVD
NVD
added 2026/02/24 8:16 a.m.12 views

CVE-2026-1229

The CombinedMult function in the CIRCL ecc/p384 package secp384r1 curve produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are not affected. The bug was fixed in v1.6.3...

9.8CVSS0.00397EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 8:16 a.m.3 views

UBUNTU-CVE-2026-1229

The CombinedMult function in the CIRCL ecc/p384 package secp384r1 curve produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are not affected. The bug was fixed in v1.6.3...

9.8CVSS5.8AI score0.00397EPSS
Exploits0References3
CVE
CVE
added 2026/02/24 7:58 a.m.43 views

CVE-2026-1229

The CVE-2026-1229 issue concerns the CIRCL library’s secp384r1 implementation (CIRCL ecc/p384) where CombinedMult could yield an incorrect value for specific inputs. The root cause is fixed by using complete addition formulas in the library. Affected operations include ECDH and ECDSA signing on t...

9.8CVSS5.3AI score0.00397EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/24 7:58 a.m.18 views

CVE-2026-1229 Incorrect calculation in CIRCL secp384r1 CombinedMult

The CombinedMult function in the CIRCL ecc/p384 package secp384r1 curve produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are not affected. The bug was fixed in v1.6.3...

6.3CVSS0.00397EPSS
Exploits0References1
Rows per page
Query Builder