Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/06/25 8:38 a.m.25 views

CVE-2026-53186 RDMA/srp: bound SRP_RSP sense copy by the received length

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRPRSP sense copy by the received length srpprocessrsp copies sense data from rsp-data + respdatalen, where respdatalen is the full 32-bit value supplied by the SRP target and is never checked against the number o...

9.1CVSS0.00544EPSS
Exploits0References8
OSV
OSV
added 2025/05/19 12:0 a.m.19 views

ALSA-2025:7903 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: vsock: Keep the binding until socket destruction CVE-2025-21756 kernel: dm-flakey: Fix memory corruption in optional corruptbiobyte feature CVE-2025-21966 kernel: net: ppp: Add bound...

7.8CVSS7.2AI score0.00844EPSS
Exploits3References8
RedHat Linux
RedHat Linux
added 2023/12/12 5:25 p.m.4 views

golang: crypto/tls: lack of a limit on buffered post-handshake

A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size...

7.5CVSS7.3AI score0.01137EPSS
Exploits0References8
Microsoft KB
Microsoft KB
added 2022/06/02 12:0 a.m.11 views

June 14, 2022-KB5013887 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 20H2, Windows Server, version 20H2, Windows 10 Version 21H1, and Windows 10 Version 21H2

June 14, 2022-KB5013887 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 20H2, Windows Server, version 20H2, Windows 10 Version 21H1, and Windows 10 Version 21H2 Release Date: June 14, 2022 Version: .NET Framework 3.5 and 4.8 The June 14, 2022 update for Windows 10, versio...

6.6AI score
Exploits0
Prion
Prion
added 2020/05/29 7:15 p.m.20 views

Integer overflow

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the serve...

5.5CVSS6.3AI score0.01349EPSS
Exploits0References3Affected Software3
Positive Technologies
Positive Technologies
added 2019/08/07 12:0 a.m.4 views

PT-2019-11763 · Jenkins · Jenkins Configuration As Code Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Configuration as Code Plugin versions 1.26 and earlier Description: The issue arises from an incomplete fix that did not properly apply masking to some values expected to be hidden when logging the configuration being applied. This...

5.5CVSS5.4AI score0.00382EPSS
Exploits0References7
RubySec
RubySec
added 2014/02/07 12:0 a.m.19 views

Ember.js XSS Vulnerability With {{link-to}} Helper in Non-block Form

In general, Ember.js escapes or strips any user-supplied content before inserting it in strings that will be sent to innerHTML. However, a change made to the implementation of the link-to helper means that any user-supplied data bound to the link-to helper's title attribute will not be escaped...

2.6CVSS1AI score0.01316EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder