Lucene search
K

85 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.11 views

RockyLinux 9 : glibc (RLSA-2026:20597)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:20597 advisory. glibc: glibc: Incorrect DNS response parsing via crafted DNS server response CVE-2026-4437 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr...

7.5CVSS5.9AI score0.00357EPSS
Exploits3References7
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.13 views

glibc security update

An update is available for glibc. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librari...

7.5CVSS5.9AI score0.00292EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2026/05/26 10:23 a.m.13 views

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS5.9AI score0.00357EPSS
Exploits3References5
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.9 views

Typebot 安全漏洞

Typebot is an open-source chat bot builder developed by Baptiste Arnaud. Versions of Typebot prior to 3.16.0 contained security vulnerabilities. These vulnerabilities stemmed from the SRFI protection for Webhook/HTTP requests, which only verified URL strings and allowed host name parameters and...

7.6CVSS5.8AI score0.00239EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/05/19 2:41 p.m.13 views

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS5.9AI score0.00292EPSS
Exploits2References9
OSV
OSV
added 2026/05/19 12:0 a.m.11 views

ALSA-2026:19061 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

7.5CVSS5.9AI score0.00292EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.6 views

RHEL 10 : glibc (RHSA-2026:19061)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19061 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name...

7.5CVSS5.9AI score0.00292EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.3 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : glibc (SUSE-SU-2026:1369-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1369-1 advisory. - CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. -...

7.5CVSS5.9AI score0.00292EPSS
Exploits2References7
SUSE Linux
SUSE Linux
added 2026/04/15 2:43 p.m.4 views

Security update for glibc

This update for glibc fixes the following issues: CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082. Patch Instructions: To install this SUSE update use the SUSE recommended...

5.7CVSS5.8AI score0.00292EPSS
Exploits2References8
OSV
OSV
added 2026/04/10 6:44 a.m.3 views

SUSE-SU-2026:21019-1 Security update for glibc

This update for glibc fixes the following issues: Security fixes: - CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. - CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082. Other fixes: - nss: Missing checks in...

7.5CVSS5.8AI score0.00292EPSS
Exploits2References6
OSV
OSV
added 2026/04/10 6:36 a.m.3 views

OPENSUSE-SU-2026:20501-1 Security update for glibc

This update for glibc fixes the following issues: Security fixes: - CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. - CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082. Other fixes: - nss: Missing checks in...

7.5CVSS5.8AI score0.00292EPSS
Exploits2References5
OSV
OSV
added 2026/04/09 12:13 p.m.11 views

SUSE-SU-2026:21039-1 Security update for glibc

This update for glibc fixes the following issues: - CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. - CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082...

7.5CVSS5.8AI score0.00292EPSS
Exploits2References5
OSV
OSV
added 2026/04/09 11:2 a.m.3 views

SUSE-SU-2026:21069-1 Security update for glibc

This update for glibc fixes the following issues: - CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. - CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082...

7.5CVSS5.8AI score0.00292EPSS
Exploits2References5
Cvelist
Cvelist
added 2026/03/31 11:57 a.m.24 views

CVE-2026-24028 Out-of-bounds read when parsing DNS packets via Lua

An attacker might be able to trigger an out-of-bounds read by sending a crafted DNS response packet, when custom Lua code uses newDNSPacketOverlay to parse DNS packets. The out-of-bounds read might trigger a crash, leading to a denial of service, or access unrelated memory, leading to potential...

5.3CVSS0.01028EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/03/23 12:0 a.m.149 views

📄 Starlink DNS Rebinding

This Metasploit auxiliary module implements a DNS rebinding attack targeting Starlink infrastructure CVE-2023-52235. The module operates by running a malicious DNS server that dynamically switches responses from a public IP to internal network targets, enabling access to internal services. It als...

8.8CVSS5.8AI score0.00528EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.3 views

EulerOS 2.0 SP11 : libwebsockets (EulerOS-SA-2026-1613)

According to the versions of the libwebsockets package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Use After Free vulnerability exists in the WebSocket server implementation in lwshandshakeserver in warmcat libwebsockets. In specific...

7.5CVSS6AI score0.00369EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/04 6:31 p.m.3 views

EUVD-2026-9466

Multiple Cisco products are affected by a vulnerability in the Snort 3 detection engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection. This vulnerability is due to incomplete error checking...

5.8CVSS6AI score0.00475EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-23025

Multiple Cisco products are affected by a vulnerability in the Snort 3 detection engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection. This vulnerability is due to incomplete error checking...

5.8CVSS6AI score0.00475EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 9 : toolbox-0.0.99.5-5.el9 (AXSA:2024-9104:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9104:02 advisory. golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm CVE-2023-45290 golang: html/templat...

7.5CVSS8.4AI score0.01414EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : sssd-1.13.0-40.el7 (AXSA:2015-829:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-829:03 advisory. Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a...

6.8CVSS7.1AI score0.03666EPSS
Exploits0References2
Rows per page
Query Builder