Lucene search
K

92 matches found

Positive Technologies
Positive Technologies
added yesterday3 views

PT-2026-58127

Name of the Vulnerable Software and Affected Versions Windows Cryptographic Services affected versions not specified Windows Schannel affected versions not specified Description A memory leak occurs in Windows Cryptographic Services when memory is not released after its effective lifetime. This...

5.3CVSS6.1AI score
Exploits0References3
EUVD
EUVD
added last week5 views

EUVD-2026-42279

Missing release of memory after effective lifetime vulnerability in Progress MOVEit Transfer Custom Reports modules. This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.8, from 2025.1.0 before 2025.1.4, from 2026.0.0 before 2026.0.1...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.7 views

PT-2026-56453

Missing release of memory after effective lifetime vulnerability in Progress MOVEit Transfer Custom Reports modules. This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.8, from 2025.1.0 before 2025.1.4, from 2026.0.0 before 2026.0.1...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/11 1:26 p.m.9 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime due to improper cleanup of pooled direct-memory buffers in the RedisArrayAggregator function. An attacker can exhaust the JVM-wide direct-memory pool by repeatedly opening and closing...

8.7CVSS5.5AI score0.005EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 11:10 p.m.8 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime in the wand option parser when invalid arguments are provided. An attacker can cause increased memory consumption by supplying specially crafted input. Remediation A fix was pushed into...

5.1CVSS5.4AI score0.0011EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/22 5:32 a.m.17 views

Missing Release of Resource after Effective Lifetime

Overview golang.org/x/crypto/ssh is a SSH client and server Affected versions of this package are vulnerable to Missing Release of Resource after Effective Lifetime through the handling of unsolicited global request responses, which can fill an internal buffer and block the connection's read loop...

9.1CVSS5.9AI score0.00533EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/06 11:10 p.m.7 views

Missing Release of Resource after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Resource after Effective Lifetime in the handling of TCP connections with ALLOWHALFCLOSURE enabled when a remote peer sends a FIN followed by a RST. An attacker can cause resource exhaustion or high CPU utilization by...

8.7CVSS5.8AI score0.00408EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/18 12:45 a.m.6 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime in the ptpunpackSonyDPD function. An attacker can cause increased memory consumption and potential denial of service by repeatedly triggering property descriptor parsing that leads to...

4.3CVSS5.7AI score0.00181EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/14 11:32 p.m.9 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime in the PNG encoder when writing an MNG image. An attacker can cause resource exhaustion by repeatedly triggering failures during image encoding. Remediation A fix was pushed into the...

6.3CVSS5.7AI score0.00284EPSS
Exploits0References2
Redos
Redos
added 2026/04/14 12:0 a.m.8 views

ROS-20260414-73-0007

Vulnerability in kernel-lt related to lack of memory release after effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00146EPSS
Exploits0
Snyk
Snyk
added 2026/03/26 10:9 p.m.5 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

4.6CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2026/03/26 10:9 p.m.5 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

4.6CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2026/03/26 9:10 p.m.3 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime during handling of DICOM files containing non-standard VR types in their file meta-information. An attacker can cause excessive memory consumption and resource exhaustion by supplying a...

8.7CVSS5.8AI score0.00358EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:1 p.m.6 views

CVE-2026-33852

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS5.8AI score0.00257EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/24 9:30 a.m.5 views

EUVD-2026-14774

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS5.8AI score0.00257EPSS
Exploits0References2
NVD
NVD
added 2026/03/24 7:16 a.m.6 views

CVE-2026-33852

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS0.00257EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/24 6:31 a.m.7 views

EUVD-2026-14762

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS5.8AI score0.00349EPSS
Exploits0References2
NVD
NVD
added 2026/03/24 6:16 a.m.7 views

CVE-2026-33856

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS0.00349EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/24 5:59 a.m.2 views

CVE-2026-33856 Missing Release of Memory after Effective Lifetime in MolotovCherry Android-ImageMagick7

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS5.8AI score0.00349EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/24 5:59 a.m.2 views

CVE-2026-33856

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11...

7.5CVSS5.8AI score0.00349EPSS
Exploits0References2
Rows per page
Query Builder