Lucene search
K

16737 matches found

RedHat Linux
RedHat Linux
added yesterday1 views

kernel: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

A flaw was found in the Linux kernel, specifically within the RDMA Remote Direct Memory Access vmwpvrdma module. This vulnerability is a double free, which means the system attempts to release the same memory resource twice. This can occur in an error handling path within the pvrdmaallocucontext...

7.8CVSS6AI score0.00143EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday1 views

kernel: nvmet-tcp: fix race between ICReq handling and queue teardown

A flaw was found in the Linux kernel's NVMe over TCP nvmet-tcp implementation. A race condition exists between the handling of an Initialization Connection Request ICReq and the teardown of a queue. A remote attacker, by sending an ICReq and immediately closing the connection, could trigger a...

9.8CVSS6.1AI score0.00353EPSS
Exploits0References5
NVD
NVD
added yesterday6 views

CVE-2026-61457

The Grav API plugin getgrav/grav-plugin-api before 1.0.3 contains a file upload extension bypass in the API media controller. HandlesMediaUploads::validateFileExtension inspects only the final file extension via pathinfo$filename, PATHINFOEXTENSION, so a user with api.media.write permission can...

8.8CVSS
Exploits0References2
Cvelist
Cvelist
added yesterday4 views

CVE-2026-61457 Grav before 1.0.3 Remote Code Execution via File Upload Extension Bypass

The Grav API plugin getgrav/grav-plugin-api before 1.0.3 contains a file upload extension bypass in the API media controller. HandlesMediaUploads::validateFileExtension inspects only the final file extension via pathinfo$filename, PATHINFOEXTENSION, so a user with api.media.write permission can...

8.8CVSS
Exploits0References2
EUVD
EUVD
added yesterday4 views

EUVD-2026-44651

The Grav API plugin getgrav/grav-plugin-api before 1.0.3 contains a file upload extension bypass in the API media controller. HandlesMediaUploads::validateFileExtension inspects only the final file extension via pathinfo$filename, PATHINFOEXTENSION, so a user with api.media.write permission can...

8.8CVSS6.3AI score
Exploits0References2
Nuclei
Nuclei
added yesterday14 views

Vite Dev Server - Information Exposure

Vite dev server could allow reading files from the Vite project root by bypassing server.fs.deny with double forward-slash paths //. This affects exposed dev servers only. id: CVE-2023-34092 info: name: Vite Dev Server - Information Exposure author: ritikchaddha severity: high description: | Vite...

7.5CVSS7AI score0.03152EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added yesterday1 views

net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

A flaw was found in the net package of Go golang, specifically when using the LookupCNAME function with the cgo DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name CNAME response. This can trigger a double-free of C memory, leading to a crash and a Denial of...

7.5CVSS6.9AI score0.00813EPSS
Exploits0References8
NVD
NVD
added 2 days ago4 views

CVE-2026-55132

Double free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00385EPSS
Exploits0References1
NVD
NVD
added 2 days ago3 views

CVE-2026-50685

Double free in Windows DHCP Server allows an authorized attacker to execute code over a network...

7.5CVSS0.00618EPSS
Exploits0References1
NVD
NVD
added 2 days ago3 views

CVE-2026-50361

Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00188EPSS
Exploits0References1
NVD
NVD
added 2 days ago4 views

CVE-2026-55004

Double free in Microsoft Printer Drivers allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00245EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2 days ago5 views

kernel: scsi: qla2xxx: Completely fix fcport double free

A flaw was found in the Linux kernel's qla2xxx SCSI driver. An issue exists where a Fibre Channel port fcport object can be freed twice due to an error in the qla2x00elsdcmdspfree function. This double free vulnerability can lead to memory corruption, potentially causing system instability or a...

9.8CVSS6.7AI score0.0038EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 days ago5 views

kernel: nvmet-tcp: fix race between ICReq handling and queue teardown

A flaw was found in the Linux kernel's NVMe over TCP nvmet-tcp implementation. A race condition exists between the handling of an Initialization Connection Request ICReq and the teardown of a queue. A remote attacker, by sending an ICReq and immediately closing the connection, could trigger a...

9.8CVSS6.1AI score0.00353EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 days ago4 views

net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

A flaw was found in the net package of Go golang, specifically when using the LookupCNAME function with the cgo DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name CNAME response. This can trigger a double-free of C memory, leading to a crash and a Denial of...

7.5CVSS6.9AI score0.00813EPSS
Exploits0References8
Microsoft CVE
Microsoft CVE
added 2 days ago4 views

Microsoft Brokering File System Elevation of Privilege Vulnerability

Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00188EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2 days ago5 views

Windows Print Configuration Elevation of Privilege Vulnerability

Double free in Microsoft Printer Drivers allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00245EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2 days ago5 views

PT-2026-58505

Name of the Vulnerable Software and Affected Versions Windows DHCP Server affected versions not specified Description A double free issue exists in the Windows DHCP Server, which could allow an authorized attacker to execute arbitrary code over a network. A double free occurs when the program...

7.5CVSS6.3AI score0.00618EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago5 views

PT-2026-58575

Name of the Vulnerable Software and Affected Versions Microsoft Office Word affected versions not specified Description A double free issue exists in Microsoft Office Word, which allows an unauthorized attacker to execute code locally. This occurs when a victim opens a specially crafted file,...

7.8CVSS6.4AI score0.00385EPSS
Exploits0References4
NVD
NVD
added 3 days ago7 views

CVE-2026-49972

Laravel-Mediable before 7.0.0 contains a file upload vulnerability that allows unauthenticated attackers to achieve remote code execution by uploading a file with an embedded PHP extension disguised within a double extension such as shell.php.jpg. The PATHINFOFILENAME extraction preserves the inn...

8.8CVSS0.00777EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 3 days ago2 views

CVE-2026-49972

Laravel-Mediable before 7.0.0 contains a file upload vulnerability that allows unauthenticated attackers to achieve remote code execution by uploading a file with an embedded PHP extension disguised within a double extension such as shell.php.jpg. The PATHINFOFILENAME extraction preserves the inn...

8.8CVSS6.5AI score0.00777EPSS
Exploits0References4
Rows per page
Query Builder