Lucene search
K

15 matches found

EUVD
EUVD
added yesterday4 views

EUVD-2026-42255

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback access. A malicious RDP server can trigger a race condition by sending DYNVCDATA and DYNVCCLOSE messages concurrently, causing...

8.3CVSS6.6AI score
Exploits0References2
Cvelist
Cvelist
added yesterday10 views

CVE-2026-56297 FreeRDP - Use-After-Free via Race Condition in DRDYNVC Channel Callback

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback access. A malicious RDP server can trigger a race condition by sending DYNVCDATA and DYNVCCLOSE messages concurrently, causing...

8.3CVSS
Exploits0References2
NVD
NVD
added 3 days ago4 views

CVE-2026-25268

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS0.00072EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 3 days ago4 views

CVE-2026-25268

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS6AI score0.00072EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago33 views

CVE-2026-25268 Stack-based Buffer Overflow in WLAN Host

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS0.00072EPSS
Exploits0References1
CVE
CVE
added 3 days ago11 views

CVE-2026-25268

The CVE-2026-25268 issue is a stack-based buffer overflow in WLAN Host caused by memory corruption when processing invalid HT40 channel layouts during dynamic channel switching. Affects WLAN Host with a Local attack vector, requiring Low privileges and no user interaction, and with a changed scop...

8.8CVSS6AI score0.00072EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/01/14 5:43 p.m.36 views

CVE-2026-22851

CVE-2026-22851 concerns FreeRDP prior to 3.20.1, where a race between the RDPGFX dynamic channel thread and the SDL render thread can cause a heap use-after-free. Specifically, an escaped pointer to sdl->primary (SDL_Surface) may be accessed after the surface has been freed during RDPGFX Reset...

8.2CVSS6.4AI score0.00247EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-6983

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00717EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/09/11 12:0 a.m.2 views

Multi-Channel Secure Communication Framework for Wireless IoT (MCSC-WoT): Enhancing Security in Internet of Things

In modern smart systems, the convergence of the Internet of Things IoT and Wireless of Things WoT have been revolutionized by offering a broad level of wireless connectivity and communication among various devices. Hitherto, this greater interconnectivity poses important security problems,...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 7:40 p.m.9 views

CVE-2022-39203

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

8.8CVSS6.6AI score0.00717EPSS
Exploits0References1
OSV
OSV
added 2022/09/15 3:26 a.m.15 views

GHSA-XVQG-MV25-RWVW Parsing issue in matrix-org/node-irc leading to room takeovers

Impact Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. Patched The vulnerability has been patched in matrix-appservice-irc 0.35.0...

8.8CVSS8.6AI score0.00717EPSS
Exploits0References4
NVD
NVD
added 2022/09/13 7:15 p.m.41 views

CVE-2022-39203

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

8.8CVSS0.00717EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/13 6:15 p.m.7 views

CVE-2022-39203 Parsing issue in matrix-org/node-irc leading to room takeovers

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

8.8CVSS8.6AI score0.00717EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/13 6:15 p.m.44 views

CVE-2022-39203 Parsing issue in matrix-org/node-irc leading to room takeovers

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

8.8CVSS8.8AI score0.00717EPSS
Exploits0References2
OSV
OSV
added 2022/09/13 6:15 p.m.29 views

CVE-2022-39203 Parsing issue in matrix-org/node-irc leading to room takeovers

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

8.8CVSS8.4AI score0.00717EPSS
Exploits0References4
Rows per page
Query Builder