Lucene search
K

32 matches found

OSV
OSV
added 2026/06/26 6:0 p.m.3 views

RLSA-2023:2870 Moderate: freeradius:3.0 security update

FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service RADIUS server, designed to allow centralized authentication and authorization for a network. Security Fixes: freeradius: Information leakage in EAP-PWD CVE-2022-41859 freeradius: Crash on...

7.5CVSS5.7AI score0.01171EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/06/26 6:0 p.m.5 views

freeradius:3.0 security update

An update is available for module.freeradius, freeradius. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRADIUS is a high-performance and highly configurabl...

7.5CVSS6.9AI score0.01171EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.7 views

RockyLinux 8 : freeradius:3.0 (RLSA-2023:2870)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2870 advisory. freeradius: Information leakage in EAP-PWD CVE-2022-41859 freeradius: Crash on unknown option in EAP-SIM CVE-2022-41860 freeradius: Crash on invalid...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/06/24 9:9 a.m.10 views

coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS6AI score0.00224EPSS
Exploits0References6
OSV
OSV
added 2026/05/27 6:18 p.m.18 views

JLSEC-2026-566 In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success...

In GnuPG before 2.5.17, a long signature packet length causes parsesignature to return success with sig-data set to a NULL value, leading to a denial of service application crash...

3.7CVSS5.8AI score0.00447EPSS
Exploits0References4
OSV
OSV
added 2025/12/17 3:48 p.m.7 views

CLSA-2025-1765986482 webkit2gtk3: Fix of 4 CVEs

CVE-2025-13502: fix out of bounds read and integer underflow by adding bounds checking and validating message delimiters - CVE-2025-43430: fix bbq jit compiler writing to wrong stack slots in wasm try/catch blocks - CVE-2025-43421: fix memory handling issues that cause unexpected process crashes...

8.8CVSS6AI score0.01EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not checking vector instruction availability, which could lead to an abnormal data crash...

6.1AI score0.00193EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/15 12:17 p.m.7 views

Security update for qt6-base

This update for qt6-base fixes the following issues: CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigger assertion and cause a crash bsc1243958. CVE-2025-30348: complex algorithm used in encodeText in QDom when processing XML data can cause low performance bsc1239896. Patch...

6.9CVSS7AI score0.00343EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2016-1598

Malware in sbrugna...

7.8CVSS7.6AI score0.00918EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-14894

Malware in sbrugna...

7.5CVSS7.5AI score0.00745EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

EulerOS 2.0 SP10 : protobuf (EulerOS-SA-2025-2081)

According to the versions of the protobuf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Any project that uses Protobuf Pure-Python backendto parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups,...

8.2CVSS6.9AI score0.00281EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-21875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.31 and prior...

5.9CVSS6.5AI score0.01471EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:47 a.m.15 views

CVE-2023-52080

IEIT NF5280M6 UEFI firmware through 8.4 has a pool overflow vulnerability, caused by improper use of the gRT-GetVariable function. Attackers with access to local NVRAM variables can exploit this by modifying these variables on SPI Flash, resulting in memory data being tampered with. When critical...

7.7CVSS7.1AI score0.00198EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:33 a.m.12 views

CVE-2018-17008

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for wireless wlanhost2g power...

6.5CVSS7.1AI score0.0104EPSS
Exploits1References1
OSV
OSV
added 2025/03/21 1:17 p.m.6 views

OESA-2025-1293 pcp security update

PCP provides a range of services that may be used to monitor and manage system performance. These services are distributed and scalable to accommodate the most complex system configurations and performance problems. Security Fixes: A vulnerability was found in Performance Co-Pilot PCP. This flaw...

5.5CVSS6.8AI score0.00288EPSS
Exploits0References3
OSV
OSV
added 2025/03/01 12:0 a.m.25 views

ASB-A-347735428

In dnglosslessdecoder::HuffDecode of dnglosslessjpeg.cpp, there is a possible way to cause a crash due to uninitialized data. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

7.5CVSS7.2AI score0.00352EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 2:59 a.m.8 views

CVE-2025-21547

Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications component: Opera Servlet. Supported versions that are affected are 5.6.19.20, 5.6.25.8, 5.6.26.6 and 5.6.27.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP t...

9.1CVSS7.2AI score0.00572EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 4:15 p.m.4 views

DEBIAN-CVE-2024-53856

rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows an attacker to trigger rpgp crashes by providing crafted data. This vulnerability is fixed in 0.14.1...

7.5CVSS5.3AI score0.00448EPSS
Exploits0References1
OSV
OSV
added 2024/11/27 12:15 p.m.6 views

DEBIAN-CVE-2024-42328

When the webdriver for the Browser object downloads data from a HTTP server, the data pointer is set to NULL and is allocated only in curlwritecb when receiving data. If the server's response is an empty document, then wd-data in the code below will remain NULL and an attempt to read from it will...

5.5CVSS4.6AI score0.00234EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/09/19 12:19 p.m.11 views

pcp: pmcd heap corruption through metric pmstore operations

A vulnerability was found in Performance Co-Pilot PCP. This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash...

5.5CVSS7.3AI score0.00261EPSS
Exploits0References4
Rows per page
Query Builder