Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2026/05/08 6:31 p.m.5 views

EUVD-2026-28787

lwjson 1.8.1 contains an improper input validation vulnerability in the streaming JSON parser lwjsonstream.c. The end-of-string detection logic incorrectly identifies escaped quote characters by only checking the immediately preceding character rather than counting consecutive backslashes, causin...

7.5CVSS5.8AI score0.00166EPSS
Exploits0References4
CVE
CVEadded 2026/05/08 12:0 a.m.6 views

CVE-2026-29975

CVE-2026-29975 affects lwjson 1.8.1. The vulnerability is in the streaming JSON parser (lwjson_stream.c): end-of-string detection incorrectly checks only the immediately preceding character for escapes, instead of counting consecutive backslashes. This can cause valid JSON strings ending with an ...

7.5CVSS5.8AI score0.00166EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.4 views

PT-2026-39144

Name of the Vulnerable Software and Affected Versions lwjson version 1.8.1 Description Improper input validation in the streaming JSON parser lwjson stream.c occurs because the end-of-string detection logic incorrectly identifies escaped quote characters. The system only checks the immediately...

7.5CVSS5.8AI score0.00166EPSS
Exploits0References5
OSV
OSVadded 2024/03/18 7:14 p.m.1 views

CLSA-2024-1710789286 ncurses: Fix of 2 CVEs

CVE-2023-29491.patch: Mitigate vulnerability by building the packages with modified --disable-root-environ option which now limits usage of environment for setuid/setgid programs only - CVE-2021-39537.patch: Add a check for end-of-string in cvtchar to handle a malformed string in infotocap...

8.8CVSS6.9AI score0.00365EPSS
Exploits2References1
UbuntuCve
UbuntuCveadded 2024/02/07 5:15 p.m.26 views

CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

7.5CVSS7.3AI score0.08586EPSS
Exploits0References4
Ubuntu
Ubuntuadded 2023/05/23 11:56 a.m.60 views

USN-6099-1: ncurses vulnerabilities

It was discovered that ncurses was incorrectly performing bounds checks when processing invalid hashcodes. An attacker could possibly use this issue to cause a denial of service or to expose sensitive information. This issue only affected Ubuntu 18.04 LTS. CVE-2019-17594 It was discovered that...

8.8CVSS7.2AI score0.00365EPSS
Exploits5
OSV
OSVadded 2021/08/11 10:15 p.m.0 views

CVE-2021-38574

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string...

9.8CVSS5.8AI score0.00017EPSS
Exploits0References1
OSV
OSVadded 2018/01/06 4:29 p.m.1 views

ALPINE-CVE-2018-5207

When using an incomplete variable argument, Irssi before 1.0.6 may access data beyond the end of the string...

7.5CVSS7AI score0.00525EPSS
Exploits0References1
OSV
OSVadded 2018/01/06 12:0 a.m.1 views

UBUNTU-CVE-2018-5205

When using incomplete escape codes, Irssi before 1.0.6 may access data beyond the end of the string...

7.5CVSS7.1AI score0.00593EPSS
Exploits0References5
OSV
OSVadded 2017/10/22 8:29 p.m.1 views

ALPINE-CVE-2017-15722

In certain cases, Irssi before 1.0.5 may fail to verify that a Safe channel ID is long enough, causing reads beyond the end of the string...

5.9CVSS6.9AI score0.00572EPSS
Exploits0References1
OSV
OSVadded 2014/09/29 12:0 a.m.53 views

DLA-66-1 apache2 - security update

Bulletin has no description...

6.8CVSS7AI score0.75444EPSS
Exploits6
Rows per page
Query Builder