Lucene search
+L

2310 matches found

OSV
OSV
added 3 days ago5 views

DEBIAN-CVE-2026-42616

Bulletin has no description...

6.1AI score
Exploits0References1
OSV
OSV
added 3 days ago5 views

DEBIAN-CVE-2026-42617

Bulletin has no description...

6.1AI score
Exploits0References1
OSV
OSV
added 4 days ago7 views

DEBIAN-CVE-2026-46629

Twig is a template language for PHP. Prior to 3.26.0, twig/intl-extra memoises IntlDateFormatter and NumberFormatter instances in arrays keyed by template-controlled filter arguments such as locale, pattern, and attrs, allowing a template to allocate many ICU formatter objects that remain pinned...

6.5CVSS6.1AI score0.00302EPSS
Exploits0References1
OSV
OSV
added 4 days ago7 views

DEBIAN-CVE-2026-45069

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 6.4.40, 7.4.12, and 8.0.12, OidcTokenHandler::verifyClaims registered audience aud, issuer iss, and expiry exp checkers but did not pass the mandatory claims list to...

9.1CVSS6.1AI score0.00232EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 6 days ago10 views

Debian dsa-6387 : chromium - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6387 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6387-1 [email protected] https://www.debian.org/securit...

9.6CVSS6.3AI score0.00306EPSS
Exploits0References56
OSV
OSV
added 2026/07/08 11:16 p.m.3 views

DEBIAN-CVE-2026-15112

Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.1AI score0.0026EPSS
Exploits0References1
OSV
OSV
added 2026/07/08 11:16 p.m.4 views

DEBIAN-CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.4AI score0.00242EPSS
Exploits0References1
OSV
OSV
added 2026/07/08 9:16 p.m.2 views

DEBIAN-CVE-2026-15172

FMP/NOTIFY protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service...

5.5CVSS6.1AI score0.00097EPSS
Exploits1References1
OSV
OSV
added 2026/07/08 6:16 p.m.3 views

DEBIAN-CVE-2026-50812

A NULL pointer dereference in the SQLite Session Extension in SQLite 3.53.1 and SQLite trunk builds before check-in e807d4e3798efd53 allows an attacker who can supply a malformed changeset blob to cause a denial of service. The issue occurs when sqlite3changesetapplyv3 applies a corrupt changeset...

5.5CVSS6.1AI score0.00112EPSS
Exploits0References1
OSV
OSV
added 2026/07/08 5:17 p.m.3 views

DEBIAN-CVE-2026-59882

guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Prior to 2.12.3, Uri::assertValidHost does not reject URI host components containing authority delimiters, embedded ports, or malformed IPv6 brackets, allowing Uri::getHost to disagree with the URI authority used for security ...

6.5CVSS6.1AI score0.00186EPSS
Exploits0References1
OSV
OSV
added 2026/07/08 3:16 p.m.2 views

DEBIAN-CVE-2026-49147

App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes. When ack prints a filename whose basename contains terminal control bytes such as ANSI escape sequences, those bytes reach the terminal unchanged. Version 3.10.0 added a...

7.5CVSS6.1AI score0.00329EPSS
Exploits0References1
OSV
OSV
added 2026/07/08 4:48 a.m.4 views

DEBIAN-CVE-2026-42218

Bulletin has no description...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/07/08 1:16 a.m.6 views

DEBIAN-CVE-2026-60002

ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. This outcome occurs only on the client side...

9.4CVSS6AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2026/07/07 7:48 a.m.2 views

DEBIAN-CVE-2026-45092

Bulletin has no description...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/07/06 4:16 p.m.9 views

DEBIAN-CVE-2026-58203

pydantic-settings provides settings management using Pydantic. From 2.12.0 until 2.14.2, NestedSecretsSettingsSource reads secret values from files in a configured secretsdir. When secretsnestedsubdir=True, a directory entry inside secretsdir that is a symbolic link pointing outside secretsdir is...

5.3CVSS6AI score0.00138EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/07/06 12:0 a.m.11 views

Debian dla-4669 : libapache2-mod-php8.2 - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dla-4669 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-4669-1 [email protected] https://www.debian.org/lts/security/...

5.6CVSS6.2AI score0.00306EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 8:48 p.m.3 views

DEBIAN-CVE-2026-12932

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/07/02 5:17 p.m.4 views

DEBIAN-CVE-2026-55952

The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1.3 ClientHello pre-shared key extension have equal length before passing them to the session ticket handler. In tlshandshake13:handlepresharedkey/3, an OfferedPreSharedKeys record with a...

7.5CVSS6.1AI score0.00487EPSS
Exploits0References1
OSV
OSV
added 2026/07/02 8:48 a.m.3 views

DEBIAN-CVE-2026-48029

Bulletin has no description...

5.7AI score0.00035EPSS
Exploits0References1
OSV
OSV
added 2026/07/01 11:16 p.m.4 views

DEBIAN-CVE-2026-14408

Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
Rows per page
Query Builder