Lucene search
+L

650 matches found

AlpineLinux
AlpineLinux
added 2026/04/22 8:15 a.m.8 views

CVE-2026-31431

In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algifaead since the source and destination...

7.8CVSS6AI score0.96267EPSS
Exploits230
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34501

Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description The mv utility improperly handles directory trees containing symbolic links when moving them across filesystem boundaries. The implementation expands symbolic links—which are pointer...

6.6CVSS6AI score0.00161EPSS
Exploits0References15
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.12 views

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils. There is a security vulnerability in uutils coreutils, which stems from improper handling of characters and block device nodes during recursive copying. This vulnerability may lead to runtime denial-of-service...

5.5CVSS5.8AI score0.00177EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/10 12:0 a.m.9 views

ClearanceKit 安全漏洞

ClearanceKit is a macOS file system access control tool developed by Craig J. Bass. Versions of ClearanceKit prior to 5.0.4-beta-1f46165 contained security vulnerabilities. These vulnerabilities stemmed from the endpoint security event handler only checking the source path for double-path...

6.8CVSS5.8AI score0.00115EPSS
Exploits0References3
Redos
Redos
added 2026/04/08 12:0 a.m.8 views

ROS-20260408-73-0013

A vulnerability in the addtuningcontrol function of the sound/pci/hda/patchca0132.c component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.1AI score
Exploits0
Redos
Redos
added 2026/04/08 12:0 a.m.6 views

ROS-20260408-73-0024

A vulnerability in the jbd2logdocheckpoint function of the fs/jbd2/checkpoint.c component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.3AI score0.00117EPSS
Exploits0
NVD
NVD
added 2026/04/06 4:16 p.m.8 views

CVE-2025-47400

Cryptographic issue while copying data to a destination buffer without validating its size...

7.1CVSS0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.10 views

PT-2026-30639

Cryptographic issue while copying data to a destination buffer without validating its size...

7.1CVSS6AI score0.00095EPSS
Exploits0References2
Redos
Redos
added 2026/04/01 12:0 a.m.5 views

ROS-20260401-73-0028

Vulnerability in libpng12 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS6.1AI score0.00139EPSS
Exploits1
Redos
Redos
added 2026/04/01 12:0 a.m.6 views

ROS-20260401-73-0031

Vulnerability in libpng12 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS6.3AI score0.00139EPSS
Exploits1
Redos
Redos
added 2026/04/01 12:0 a.m.8 views

ROS-20260401-73-0029

Vulnerability in libpng15 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS6.1AI score0.00139EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.12 views

PT-2026-34274

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0 Linux kernel versions prior to 6.19.12 Description A flaw exists in the algif aead cryptographic algorithm interface of the Linux kernel. The issue stems from an incorrect in-place operation during...

7.8CVSS7.2AI score0.96267EPSS
Exploits230
Snyk
Snyk
added 2026/03/17 2:7 p.m.5 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal through the html2BlockDOM handler in kernel/api/lute.go and the asset-copying process in the desktop publish service. An attacker can exfiltrate sensitive local files readable by the desktop process by submitting HTM...

9.9CVSS6.4AI score0.00414EPSS
Exploits1References2
Redos
Redos
added 2026/03/17 12:0 a.m.6 views

ROS-20260317-73-0020

A vulnerability in the Linux kernel COMEDIINSNLIST function is related to buffer copying without checking the size of the input data when processing the ninsns parameter. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6AI score0.00156EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.9 views

PX4-Autopilot 安全漏洞

PX4-Autopilot is an open-source drone autopilot system developed by PX4. Versions of PX4-Autopilot prior to 1.17.0-rc2 contained security vulnerabilities. These vulnerabilities stemmed from tattucan’s use of unbounded memory copying during its multi-frame assembly cycle, which could lead to stack...

6.1CVSS5.8AI score0.0027EPSS
Exploits2References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.8 views

Giflib 安全漏洞

Giflib is an open-source library and utility for processing GIFs in OpenEuler. Giflib has a security vulnerability, which stems from improper error handling and shallow copying in GifMakeSavedImage, potentially leading to double release of resources...

5.1CVSS7.1AI score0.00144EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/03/10 12:0 a.m.4 views

The vulnerability of the io_uring/kbuf component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the iouring/kbuf component in Linux operating systems is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References8Affected Software3
Redos
Redos
added 2026/03/06 12:0 a.m.7 views

ROS-20260306-73-0024

A vulnerability in the memcpy function of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS7.5AI score0.00167EPSS
Exploits0
Redos
Redos
added 2026/03/06 12:0 a.m.7 views

ROS-20260306-73-0023

A vulnerability in the net component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS6AI score0.00145EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.9 views

Craft CMS 安全漏洞

Craft CMS is an open-source content management system developed by Craft CMS. Versions prior to Craft CMS 5.9.0-beta.1 and 4.17.0-beta.1 contained security vulnerabilities. These vulnerabilities stemmed from a lack of permission verification during repeated entry operations, which could allow...

5.3CVSS5.8AI score0.00234EPSS
Exploits1References3
Rows per page
Query Builder