Exploit for CVE-2026-31431

CopyFail: CVE-2026-31431 Python implementation of copy.fail...

Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap

Exploit Title: Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap Date: 2026-02-23 Exploit Author: nu11secur1ty Vendor Homepage: https://www.google.com/chrome/ Software Link: https://www.google.com/chrome/ Version: Chrome = 144.x | Chrome 145.0.7632.75 Tested on: Windows 11 / Linux / macOS CVE...

AlmaLinux 10 : java-21-openjdk (ALSA-2026:9689)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:9689 advisory. JDK: Enhance crypto algorithm support CVE-2026-22007 JDK: Improve Kerberos credentialing CVE-2026-22013 JDK: Enhance Path Factories Redux CVE-2026-22016...

Exploit for CVE-2026-31431

Copy Fail CVE-2026-31431 - C port A cross-platform C reimpl...

CVE-2026-7420 UTT HiPER 1250GW ConfigAdvideo strcpy buffer overflow

A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. Impacted is the function strcpy of the file route/goform/ConfigAdvideo. The manipulation of the argument Profile results in buffer overflow. The attack can be executed remotely. The exploit has been released to the...

CVE-2026-7419

The CVE-2026-7419 entry describes a vulnerability in UTT HiPER 1250GW up to version 3.2.7-210907-180535 where the strcpy usage in route/goform/formTaskEdit_ap allows manipulation of the Profile argument to cause a buffer overflow. Remote exploitation is possible, and the exploit is publicly avail...

CVE-2026-7418 UTT HiPER 1250GW NTP strcpy buffer overflow

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been public...

CLSA-2026-1777466211 Fix CVE(s): CVE-2025-7545

SECURITY UPDATE: heap-based buffer overflow in copysection function - debian/patches/CVE-2025-7545.patch: Prevent output section size from being extended beyond the input section size to avoid heap-based buffer overflow when copying sections with interleaving - CVE-2025-7545...

CLSA-2026-1777479123 openssh: Fix of CVE-2026-35385

CVE-2026-35385: scp legacy -O mode privilege escalation via umask bypass...

JLSEC-2026-314

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Tcopyreopen in H5T.c, resulting in the corruption of the instruction pointer...

JLSEC-2026-327

A vulnerability has been found in HDF5 1.14.6 and classified as critical. This vulnerability affects the function H5Tbitcopy of the component Type Conversion Logic. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclos...

USN-8222-1 openssh vulnerabilities

Christos Papakonstantinou discovered that the OpenSSH scp tool incorrectly handled the legacy scp protocol -O option. This could result in certain files being installed setuid or setgid, contrary to expectations. CVE-2026-35385 Florian Kohnhäuser discovered that OpenSSH incorrectly handled shell...

Linux Distros Unpatched Vulnerability : CVE-2026-31541

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tracing: Fix tracemarker copy link list updates When the copytracemarker option is enabled for an instance, anything written into /sys/kernel/tracing/tracemarke...

CLSA-2026-1777396606 nginx: Fix of CVE-2026-27654

CVE-2026-27654: fix heap buffer overflow in ngxhttpdavmodule COPY/MOVE with alias...

java-21-openjdk security update

An update is available for java-21-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environme...

CVE-2026-42167

The vulnerability CVE-2026-42167 affects ProFTPD with the mod_sql backend, where logging of USER requests (using expansions like %U) can bypass escaping in SQLLog/SQLNamedQuery and enable stacked SQL queries. In ProFTPD builds using the vulnerable mod_sql, an attacker can cause arbitrary code exe...

CVE-2026-42167

modsql in ProFTPD before 1.3.10rc1 allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands e.g., COPY TO PROGRAM...

CVE-2026-42167

modsql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands e.g., COPY TO PROGRAM...

RockyLinux 9 : java-21-openjdk (RLSA-2026:9689)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:9689 advisory. JDK: Enhance crypto algorithm support CVE-2026-22007 JDK: Improve Kerberos credentialing CVE-2026-22013 JDK: Enhance Path Factories Redux CVE-2026-22016...

CVE-2026-31691

A flaw was found in the Linux kernel's igb network driver. When an AFXDP zero-copy application terminates abruptly, the network driver's NAPI polling mechanism can become stuck. This prevents the igbdown function from completing, leading to the TX queue becoming permanently stalled. This can resu...