Lucene search
K

702 matches found

CVE
CVE
added 2026/04/28 4:43 p.m.30 views

CVE-2026-6238

GLIBC: The deprecated debugging functions ns_printrrf, ns_printrr and fp_nquery in GNU C Library (glibc) 2.2 and newer fail to validate RDATA against its length for DNS LOC, CERT, TKEY or TSIG records. This may let an attacker craft a DNS response that crashes a target application or reads uninit...

6.5CVSS5.8AI score0.00311EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/28 6:49 a.m.9 views

freerdp: FreeRDP: Denial of Service via FastGlyph parsing buffer overflow

A flaw was found in FreeRDP. A malicious server can exploit a vulnerability in FastGlyph parsing, which improperly trusts data length without sufficient validation. This can lead to a client-side global buffer overflow, resulting in a denial of service DoS due to a crash. For this vulnerability t...

7.5CVSS5.5AI score0.00481EPSS
Exploits1References10
SUSE Linux
SUSE Linux
added 2026/04/24 11:50 a.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38234: sched/rt: Fix race in pushrttask bsc1246057. CVE-2026-23103: ipvlan: Make the addrslock be per port bsc1257773. CVE-2026-23243: RDMA/umad: Reject negative...

8.7CVSS5.5AI score0.00173EPSS
Exploits0References32
OSV
OSV
added 2026/04/21 9:16 p.m.10 views

ALPINE-CVE-2026-40892

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a stack buffer overflow exists in pjsipauthcreatedigest2 in PJSIP when using pre-computed digest credentials PJSIPCREDDATADIGEST. The function copies credential data using credinfo-data.slen as the...

9.8CVSS5.7AI score0.00419EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

SUSE SLES12 Security Update : gegl (SUSE-SU-2026:1479-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:1479-1 advisory. This update for gegl fixes the following issue: - CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lea...

7.8CVSS6.1AI score0.00615EPSS
Exploits0References4
OSV
OSV
added 2026/04/20 4:14 p.m.8 views

SUSE-SU-2026:1496-1 Security update for gegl

This update for gegl fixes the following issues: - CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749...

7.8CVSS6AI score0.00615EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/04/20 10:9 a.m.6 views

Security update for gegl

This update for gegl fixes the following issue: CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.4CVSS6AI score0.00615EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/20 4:34 a.m.5 views

GStreamer: GStreamer: Arbitrary code execution via ASF file processing

A flaw was found in GStreamer. This heap-based buffer overflow vulnerability in the ASF Demuxer component allows a remote attacker to execute arbitrary code. The issue arises from insufficient validation of user-supplied data length when processing stream headers within ASF Advanced Systems Forma...

7.8CVSS6.8AI score0.00773EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/04/17 7:35 p.m.5 views

CVE-2025-65104

A flaw was found in the Firebird client library. When an older version of the client library communicates with newer Firebird servers, it places incorrect data length values into XSQLDA fields. This vulnerability can lead to an information leak, potentially exposing sensitive data...

7.9CVSS5.7AI score0.00185EPSS
Exploits0References2
NVD
NVD
added 2026/04/17 6:16 p.m.11 views

CVE-2025-65104

Firebird is an open-source relational database management system. In versions FB3 of the client library placed incorrect data length values into XSQLDA fields when communicating with FB4 or higher servers, resulting in an information leak. This issue is fixed by upgrading to the FB4 client or...

7.9CVSS0.00185EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.15 views

Firebird 安全漏洞

Firebird is a set of open-source, cross-platform relational database management systems provided by the Firebird Foundation, which include multiple ANSI SQL-92 functions. The Firebird FB3 version has a security vulnerability, which stems from an error in the placement of data length values when t...

7.9CVSS5.8AI score0.00185EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/11 12:16 a.m.2 views

CVE-2026-4153 GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS6.2AI score0.00651EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/07 3:30 p.m.6 views

EUVD-2025-209268

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. An out-of-bounds write occurs due to a mismatch between the TP-UDHI...

5.9AI score0.00463EPSS
Exploits0References3
NVD
NVD
added 2026/04/07 3:17 p.m.6 views

CVE-2025-62818

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. An out-of-bounds write occurs due to a mismatch between the TP-UDHI...

9.8CVSS0.00463EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/07 12:25 p.m.7 views

freerdp: FreeRDP: Denial of Service via FastGlyph parsing buffer overflow

A flaw was found in FreeRDP. A malicious server can exploit a vulnerability in FastGlyph parsing, which improperly trusts data length without sufficient validation. This can lead to a client-side global buffer overflow, resulting in a denial of service DoS due to a crash. For this vulnerability t...

7.5CVSS6AI score0.00481EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2026/04/07 8:25 a.m.5 views

GStreamer: GStreamer: Arbitrary code execution via ASF file processing

A flaw was found in GStreamer. This heap-based buffer overflow vulnerability in the ASF Demuxer component allows a remote attacker to execute arbitrary code. The issue arises from insufficient validation of user-supplied data length when processing stream headers within ASF Advanced Systems Forma...

7.8CVSS7.9AI score0.00773EPSS
Exploits0References6
CVE
CVE
added 2026/04/07 12:0 a.m.12 views

CVE-2025-62818

CVE-2025-62818 affects Samsung Mobile Processors, Wearable Processors and Modems (Exynos 980/990/850/1080/2100/1280/2200/1330/1380/1480/2400/1580/2500/9110/W920/W930/W1000, Modems 5123/5300/5400). The issue is an out-of-bounds write caused by a mismatch between TP-UDHI and UDL when processing an ...

9.8CVSS5.9AI score0.00463EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/31 1:11 p.m.4 views

GStreamer: GStreamer: Remote Code Execution via Heap-based Buffer Overflow in rtpqdm2depay

A flaw was found in GStreamer. This heap-based buffer overflow vulnerability in the rtpqdm2depay component allows a remote attacker to execute arbitrary code. The flaw occurs due to insufficient validation of user-supplied data length during the processing of X-QDM Real-time Transport Protocol RT...

8.8CVSS8.1AI score0.00828EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.18 views

Amazon Linux 2023 : bpftool6.18, kernel6.18, kernel6.18-devel (ALAS2023-2026-1514)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1514 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent CVE-2025-71268 In the Linux kernel, the followi...

9.8CVSS5.5AI score0.00686EPSS
Exploits0References165
RedhatCVE
RedhatCVE
added 2026/03/25 3:43 p.m.5 views

CVE-2026-23325

A flaw was found in the Linux kernel's mt76 WiFi driver, specifically within the mt7996 component. This vulnerability, an out-of-bounds OOB access, occurs because the driver does not adequately check the length of incoming data frames before attempting to read or write to memory. A local attacker...

5.8AI score0.00125EPSS
Exploits0References4
Rows per page
Query Builder