Lucene search
+L

29 matches found

redhatcve
redhatcve
added 2026/06/26 8:4 a.m.9 views

CVE-2026-22879

A flaw was found in vtk-dicom. A heap-based buffer overflow vulnerability exists in the vtkDICOMItem::NewDataElement function. A remote attacker could exploit this vulnerability without requiring user interaction or elevated privileges. Successful exploitation could lead to arbitrary code...

8.1CVSS6.3AI score0.0032EPSS
Exploits0References2
euvd
euvd
added 2026/06/26 12:32 a.m.7 views

EUVD-2026-39582

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability...

8.1CVSS6.1AI score0.0032EPSS
Exploits0References3
nvd
nvd
added 2026/06/25 10:17 p.m.8 views

CVE-2026-22879

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability...

8.1CVSS0.0032EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/25 9:46 p.m.7 views

CVE-2026-22879

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability...

8.1CVSS6.1AI score0.0032EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/06/25 9:46 p.m.18 views

CVE-2026-22879

The CVE concerns the vtk-dicom component, specifically the vtkDICOMItem::NewDataElement function. It is described as a heap-based buffer overflow vulnerability in vtk-dicom. The CVSSv3.1 vector indicates a high-severity issue (C:H, I:H, A:H) with network attack vector, high attack complexity, no ...

8.1CVSS6.1AI score0.0032EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/25 9:46 p.m.27 views

CVE-2026-22879

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability...

8.1CVSS0.0032EPSS
Exploits0References1
talos
talos
added 2026/06/25 12:0 a.m.8 views

vtk vtk-dicom vtkDICOMItem::FindDataElementOrInsert heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the vtkDICOMItem::FindDataElementOrInsert functionality of vtk-dicom versions: 9.5.2. A specially crafted DICOM file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.4AI score0.0032EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.13 views

PT-2026-52621

Name of the Vulnerable Software and Affected Versions vtk vtk-dicom affected versions not specified Description A heap-based buffer overflow occurs in the vtkDICOMItem::NewDataElement function. A heap-based buffer overflow is a memory corruption issue that happens when a program writes more data ...

8.1CVSS6AI score0.0032EPSS
Exploits0References3
redos
redos
added 2026/04/17 12:0 a.m.6 views

ROS-20260417-73-0043

Vulnerability in zabbix7.4 related to the provisioning of a data element for an erroneous session. Exploitation of the vulnerability may allow an attacker to escalate his privileges...

7.1CVSS5.8AI score0.00154EPSS
Exploits0
redos
redos
added 2026/04/17 12:0 a.m.8 views

ROS-20260417-73-0041

Vulnerability in zabbix7-lts related to providing a data element for an erroneous session. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

7.1CVSS5.8AI score0.00154EPSS
Exploits0
redos
redos
added 2026/04/17 12:0 a.m.7 views

ROS-20260417-73-0040

Vulnerability in zabbix-lts related to providing a data element for an erroneous session. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

7.1CVSS5.8AI score0.00154EPSS
Exploits0
redhatcve
redhatcve
added 2026/03/13 7:48 p.m.4 views

CVE-2026-29776

An integer underflow flaw has been discovered in FreeRDP. A uint32 field is populated from a uint16 data element. This field is later modified without proper checks and in some situations a program crash may occur. Mitigation Mitigation for this issue is either not available or the currently...

3.1CVSS5.6AI score0.00175EPSS
Exploits0References5
cvelist
cvelist
added 2026/01/27 12:40 a.m.32 views

CVE-2026-24490 MobSF has Stored XSS via Manifest Analysis - Dialer Code Host Field

MobSF is a mobile application security testing tool used. Prior to version 4.4.5, a Stored Cross-site Scripting XSS vulnerability in MobSF's Android manifest analysis allows an attacker to execute arbitrary JavaScript in the context of a victim's browser session by uploading a malicious APK. The...

8.1CVSS0.0031EPSS
Exploits1References3
redos
redos
added 2025/12/15 12:0 a.m.4 views

ROS-20251215-7313

A vulnerability in the cifs.upcall function of the CIFS cifs-utils network file system mount utility package is related to the provisioning of a data element for an erroneous session. Exploitation of the vulnerability could allow an attacker to disclose protected information...

5.9CVSS8.5AI score0.00149EPSS
Exploits0
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2002-1038

Malware in sbrugna...

5CVSS6.2AI score0.01949EPSS
Exploits0References10
bdu_fstec
bdu_fstec
added 2025/07/28 12:0 a.m.10 views

The vulnerability of the hid_bpfdestroy_device() function in the HID component of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the hidbpfdestroydevice function in the HID component of the Linux kernel is related to improper elimination of certain elements in the output data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7CVSS6.5AI score0.00161EPSS
Exploits0References10Affected Software6
bdu_fstec
bdu_fstec
added 2024/05/06 12:0 a.m.8 views

The vulnerability of the DCH-compatible Thunderbolt driver, related to incorrect elimination of special elements in the output data, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the DCH-compatible Thunderbolt driver is related to incorrect elimination of special elements in the output data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.8CVSS5.5AI score0.0021EPSS
Exploits0References8Affected Software1
talos
talos
added 2024/02/20 12:0 a.m.77 views

Imaging Data Commons libdicom DICOM File Meta Information Parsing Use-After-Free vulnerabilities

Talos Vulnerability Report TALOS-2024-1931 Imaging Data Commons libdicom DICOM File Meta Information Parsing Use-After-Free vulnerabilities February 20, 2024 CVE Number CVE-2024-24793,CVE-2024-24794 SUMMARY A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imagi...

9.8CVSS8.3AI score0.01054EPSS
Exploits2
cnnvd
cnnvd
added 2024/01/02 12:0 a.m.7 views

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated. A security vulnerability exists in Qualcomm Chipsets that originates from a denial of service when the WLAN firmware receives a reassoc response frame containing a RICDATA element...

7.5CVSS6.7AI score0.00324EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/01/01 12:0 a.m.7 views

PT-2024-12415 · Qualcomm · Qualcomm 7C+ Gen 3 Compute

Name of the Vulnerable Software and Affected Versions: Qualcomm 7c+ Gen 3 Compute affected versions not specified Description: The issue occurs when the WLAN firmware receives a 'reassoc response' frame that includes a RIC DATA element, leading to a transient denial of service DOS. Recommendation...

7.5CVSS7.1AI score0.00324EPSS
Exploits0References6
Rows per page
Query Builder