Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Github Security Blog
Github Security Blogadded 2026/05/18 8:36 p.m.12 views

ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions

When reading multiple images with different dimensions an out of bounds heap write can occur...

5.8AI score
Exploits0References2Affected Software18
UbuntuCve
UbuntuCveadded 2026/03/30 12:0 a.m.1 views

CVE-2026-33986

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and h264-height are updated before the reallocation loop. If any winpralignedrecalloc call fails, the function returns FALSE but width/height are...

7.5CVSS5.7AI score0.00055EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/01/13 6:44 p.m.6 views

vLLM is vulnerable to DoS in Idefics3 vision models via image payload with ambiguous dimensions

Summary Users can crash the vLLM engine serving multimodal models that use the Idefics3 vision model implementation by sending a specially crafted 1x1 pixel image. This causes a tensor dimension mismatch that results in an unhandled runtime error, leading to complete server termination. Details T...

7.5CVSS6.8AI score0.00018EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2026/01/10 6:39 a.m.3 views

CVE-2026-22773 vLLM is vulnerable to DoS in Idefics3 vision models via image payload with ambiguous dimensions

vLLM is an inference and serving engine for large language models LLMs. In versions from 0.6.4 to before 0.12.0, users can crash the vLLM engine serving multimodal models that use the Idefics3 vision model implementation by sending a specially crafted 1x1 pixel image. This causes a tensor dimensi...

6.5CVSS6.7AI score0.00018EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/01/10 12:0 a.m.2 views

vLLM 安全漏洞

vLLM is vLLM open source a high throughput and memory efficient inference and service engine for LLM. A security vulnerability exists in vLLM version 0.6.4 up to and including version 0.12.0, which stems from the fact that sending specially crafted 1x1 pixel images results in a tensor dimension...

7.5CVSS6.4AI score0.00018EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/01/10 12:0 a.m.4 views

PT-2026-2260

Name of the Vulnerable Software and Affected Versions vLLM versions 0.6.4 through 0.11.9 Description vLLM is an inference and serving engine for large language models LLMs. Users can cause the vLLM engine to crash when serving multimodal models that utilize the Idefics3 vision model implementatio...

6.5CVSS6.6AI score0.00018EPSS
Exploits1References5
PyPA
PyPAadded 2021/05/14 8:15 p.m.4 views

PYSEC-2021-505

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.AvgPool3DGrad is vulnerable to a heap buffer overflow. The...

7.8CVSS7.3AI score0.00012EPSS
Exploits1References2Affected Software1
OPENSUSE Linux
OPENSUSE Linuxadded 2020/10/29 12:0 a.m.42 views

Security update for tensorflow2 (moderate)

openSUSE Security Update: Security update for tensorflow2 Announcement ID: openSUSE-SU-2020:1766-1 Rating: moderate References: 1173314 1175099 1175789 1177022 Cross-References: CVE-2020-15190 CVE-2020-15191 CVE-2020-15192 CVE-2020-15193 CVE-2020-15194 CVE-2020-15195 CVE-2020-15202 CVE-2020-15203...

9.8CVSS7.1AI score0.01411EPSS
Exploits16References4
Rows per page
Query Builder