Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4742 matches found

OSV
OSVadded 2026/03/18 4:17 p.m.1 views

GHSA-QPXP-75PX-XJCP pypdf has inefficient decoding of array-based streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes and/or large memory usage. This requires accessing an array-based stream with lots of entries. Patches This has been fixed in pypdf==6.9.1. Workarounds If you cannot upgrade yet, consider applying the...

5.1CVSS5.7AI score0.00014EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2026/03/18 4:17 p.m.4 views

pypdf has inefficient decoding of array-based streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes and/or large memory usage. This requires accessing an array-based stream with lots of entries. Patches This has been fixed in pypdf==6.9.1. Workarounds If you cannot upgrade yet, consider applying the...

6.5CVSS5.7AI score0.00014EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/03/18 2:29 a.m.32 views

CVE-2026-30922 pyasn1 Vulnerable to Denial of Service via Unbounded Recursion

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the pyasn1 library is vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested SEQUENC...

7.5CVSS0.00027EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2026/03/18 12:24 a.m.2 views

SUSE CVE-2026-32775

libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exifmnotedatagetvalue function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow...

5.3CVSS5.8AI score0.00008EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2026/03/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most...

8.8CVSS6.3AI score0.0007EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. In the...

8.2CVSS5.7AI score0.00019EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of...

9.1CVSS5.9AI score0.00022EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-30922

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the pyasn1 library is vulnerable to a Denial of Service DoS attack caused by uncontrolled recursio...

7.5CVSS6.8AI score0.00032EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/03/18 12:0 a.m.3 views

HTSlib 缓冲区错误漏洞

HTSlib is a C-language library developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 contain a buffer error vulnerability. This vulnerability stems from a single-digit error during the decoding of CRAM features, which may lead to a heap buffer overflow...

8.8CVSS6.1AI score0.00061EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31969

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of...

8.1CVSS6.4AI score0.00061EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/03/18 12:0 a.m.2 views

PT-2026-26217

Name of the Vulnerable Software and Affected Versions NLTK versions 3.9.3 and prior Description NLTK Natural Language Toolkit contains a reflected cross-site scripting XSS issue in the lookup ... route of nltk.app.wordnet app. A crafted lookup URL can inject arbitrary HTML/JavaScript into the...

6.1CVSS6.1AI score0.00019EPSS
Exploits1References30
OSV
OSVadded 2026/03/17 4:17 p.m.2 views

GHSA-JR27-M4P2-RC6R Denial of Service in pyasn1 via Unbounded Recursion

Summary The pyasn1 library is vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing nested SEQUENCE 0x30 or SET 0x31 tags with Indefinite Length 0x80 markers. This...

7.5CVSS7.1AI score0.00027EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2026/03/17 12:0 a.m.4 views

PT-2026-25973

Name of the Vulnerable Software and Affected Versions pyasn1 versions prior to 0.6.3 Description The pyasn1 library is susceptible to a Denial of Service DoS attack stemming from uncontrolled recursion when decoding ASN.1 data containing deeply nested structures. An attacker can craft a payload...

8.2CVSS7.1AI score0.00032EPSS
Exploits2References74
Snyk
Snykadded 2026/03/16 8:27 p.m.1 views

Out-of-bounds Read

Overview github.com/shamaton/msgpack/v2/internal/decoding is a Affected versions of this package are vulnerable to Out-of-bounds Read. via the Unmarshal, UnmarshalAsMap, UnmarshalAsArray, and Marshal functions, which invoke Decode. An attacker can cause a panic with truncated fixext data that...

8.7CVSS6.7AI score0.00528EPSS
Exploits2References3
Snyk
Snykadded 2026/03/16 8:27 p.m.1 views

Out-of-bounds Read

Overview github.com/shamaton/msgpack/v3/internal/decoding is a None Affected versions of this package are vulnerable to Out-of-bounds Read. via the Unmarshal, UnmarshalAsMap, UnmarshalAsArray, and Marshal functions, which invoke Decode. An attacker can cause a panic with truncated fixext data tha...

8.7CVSS6.7AI score0.00528EPSS
Exploits2References3
RedhatCVE
RedhatCVEadded 2026/03/16 5:59 p.m.4 views

CVE-2025-71264

An out of bound array access flaw has been discovered in the mumble voip client. In certain situations decoding of opus encoded audio can attempt to access an array with an invalid index. This may result in a program crash. Mitigation Mitigation for this issue is either not available or the...

3.7CVSS5.6AI score0.00056EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/16 3:30 p.m.1 views

EUVD-2026-12121

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score0.00078EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/03/16 2:29 p.m.1 views

CVE-2026-3081

A flaw was found in GStreamer. A remote attacker can exploit this vulnerability by providing specially crafted H.266 codec data during the parsing of decoding units. This issue arises from insufficient validation of the length of user-supplied data before it is copied to a fixed-length stack-base...

7.8CVSS6.6AI score0.00078EPSS
Exploits0References5
NVD
NVDadded 2026/03/16 2:19 p.m.2 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS0.00078EPSS
Exploits0References2
OSV
OSVadded 2026/03/16 2:19 p.m.1 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score
Exploits0References2
Rows per page
Query Builder