Lucene search
K

12 matches found

ATTACKERKB
ATTACKERKB
added yesterday4 views

CVE-2026-57251

The application opens a PDF, but the cloud-like appearance of the construction process lacks proper setting of an upper limit and consistency checks. Out-of-bounds access to the underlying array is exposed, ultimately leading to a crash of the application...

7.8CVSS6AI score0.00116EPSS
Exploits0References2Affected Software2
EUVD
EUVD
added 2026/06/25 6:14 p.m.4 views

EUVD-2026-39531

RTKLIB through 2.4.3 contains a heap buffer overflow vulnerability in the readrnxobsb function in src/rinex.c that allows attackers to trigger memory corruption by failing to clamp satellite count values from RINEX epoch headers. Attackers can craft malicious RINEX files declaring more than 64...

7.1CVSS6.2AI score0.00239EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/06/01 12:0 a.m.13 views

CVE-2026-37220

FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2SETUPREQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path and enforces this via assert. A remote unauthenticated attacker can crash the near-RT RIC port 36421...

5.8AI score0.00347EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.7 views

PT-2026-25993

Summary A user with permission to create or update a TaskRun or PipelineRun can crash the Tekton Pipelines controller by setting .spec.taskRef.resolver or .spec.pipelineRef.resolver to a string of 31 characters or more, causing a denial of service for all reconciliation. Details The controller...

6.5CVSS5.9AI score0.00368EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/03/10 6:31 p.m.95 views

Envoy's global rate limit may crash when the response phase limit is enabled and the response phase request is failed directly

Summary At the rate limit filter, if we enabled the response phase limit with applyonstreamdone in the rate limit configuration and the response phase limit request fails directly, it may crash Envoy. Details When both the request phase limit and response phase limit are enabled, the safe gRPC...

7.5CVSS5.8AI score0.00315EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/01/16 7:16 p.m.5 views

CVE-2021-47831

Sandboxie 5.49.7 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the container folder input field. Attackers can paste a large buffer of repeated characters into the Sandbox container folder setting to trigger an application crash...

7.5CVSS0.00333EPSS
Exploits0References3
NVD
NVD
added 2026/01/15 4:16 p.m.11 views

CVE-2021-47765

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating username and error report fields. Attackers can trigger the crash by inserting 1000 characters into the username or email address fields, causing the application to...

6.7CVSS0.00174EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/23 12:0 a.m.4 views

PT-2025-52885

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the NFSv4/pNFS implementation where the NFS INO LAYOUTCOMMIT flag is not properly cleared in the pnfs mark layout stateid invalid function. This can lead to a crash when...

6CVSS6.3AI score0.00177EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-17852

Malware in sbrugna...

7.5CVSS7.5AI score0.01348EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 4:15 p.m.5 views

AZL-69527 CVE-2025-21899 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting namedtriggers list The following commands causes a crash: cd /sys/kernel/tracing/events/rcu/rcucallback echo 'hist:name=bad:keys=commonpid:onmaxbogus.savecommonpid' trigger bash: echo: write...

5.5CVSS6.5AI score0.00189EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

ARM SCP-Firmware 安全漏洞

ARM SCP-Firmware is a firmware driver from ARM UK. A security vulnerability exists in ARM SCP-Firmware version 2.15.0 and earlier, which stems from a specially crafted SCMI message that causes the SCP to experience a Usage Fault and crash...

7.5CVSS6.7AI score0.00505EPSS
Exploits0References1
OSV
OSV
added 2020/07/06 7:15 p.m.2 views

ALPINE-CVE-2020-10760

A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba...

6.5CVSS6.7AI score0.02659EPSS
Exploits0References1
Rows per page
Query Builder