Lucene search
K

53 matches found

RedhatCVE
RedhatCVE
added 2026/07/01 7:52 p.m.7 views

CVE-2026-53329

A flaw was found in the Linux kernel's drm/amd/display component. The dalvectorreserve function calculates memory allocation size using 32-bit arithmetic, which can lead to an integer overflow. This overflow causes a smaller memory buffer to be allocated than intended, resulting in a heap overflo...

6.3AI score0.00195EPSS
Exploits0References4
NVD
NVD
added 2026/07/01 2:16 p.m.6 views

CVE-2026-53329

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

0.00195EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/07/01 1:32 p.m.6 views

CVE-2026-53329

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

6AI score0.00195EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.7 views

CVE-2026-53329

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

6AI score0.00195EPSS
Exploits0References9Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.7 views

CVE-2019-11102

Insufficient input validation in IntelR DAL software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...

4.4CVSS6.2AI score0.00346EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:56 a.m.9 views

CVE-2020-12304

Improper access control in Installer for IntelR DAL SDK before version 2.1 for Windows may allow an authenticated user to potentially enable escalation of privileges via local access...

7.8CVSS7AI score0.00352EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-2806

Malware in sbrugna...

4.4CVSS6.1AI score0.00346EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-4616

Malware in sbrugna...

7.8CVSS7.5AI score0.00352EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4615

Malware in sbrugna...

7.8CVSS7.4AI score0.00364EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-0977

Malware in sbrugna...

6.7CVSS6.8AI score0.00413EPSS
Exploits0References3
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-11077 Malicious code in @zalastax/nolb-dal (npm)

The package @zalastax/nolb-dal was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-dal (npm)

The package @zalastax/nolb-dal was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:9 a.m.7 views

CVE-2019-0170

Buffer overflow in subsystem in IntelR DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS7.3AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/08 2:55 p.m.24 views

CVE-2024-42357 Shopware vulnerable to blind SQL-injection in DAL aggregations

Shopware is an open commerce platform. Prior to versions 6.6.5.1 and 6.5.8.13, the Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the...

7.3CVSS7AI score0.00602EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/08/08 2:55 p.m.49 views

CVE-2024-42357 Shopware vulnerable to blind SQL-injection in DAL aggregations

Shopware is an open commerce platform. Prior to versions 6.6.5.1 and 6.5.8.13, the Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the...

7.3CVSS0.00602EPSS
Exploits0References5
OSV
OSV
added 2024/08/08 2:53 p.m.16 views

GHSA-P6W9-R443-R752 Shopware vulnerable to blind SQL-injection in DAL aggregations

Impact The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the parameters in the “aggregations” object. The ‘name’ field in this...

7.3CVSS8.4AI score0.00602EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/01/16 10:30 p.m.51 views

CVE-2024-22406 Blind SQL-injection in DAL aggregations in Shopware

Shopware is an open headless commerce platform. The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can be aggregated using the parameters in the “aggregations...

9.3CVSS9.4AI score0.0064EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/08/31 2:15 p.m.8 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

9.8CVSS6.1AI score0.00861EPSS
Exploits0References5
NVD
NVD
added 2023/08/31 2:15 p.m.26 views

CVE-2023-41636

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

9.8CVSS9.8AI score0.00861EPSS
Exploits0References2
Prion
Prion
added 2023/08/31 2:15 p.m.25 views

Sql injection

A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query...

7.5CVSS9.7AI score0.00861EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder