CVE-2026-31613

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

CVE-2026-31613

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUSSTOPPEDONSYMLINK, smb2checkmessage returns success without any length validation, leaving the symlink parsers as the only defense against an...

PT-2026-34965

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the SMB client when parsing symlink error responses. When a CREATE request returns STATUS STOPPED ON SYMLINK, the smb2 check message function returns success without...

EUVD-2022-2066

Malicious code in bioql PyPI...

EUVD-2022-25759

Malicious code in bioql PyPI...

CVE-2025-0330

In berriai/litellm version v1.52.1, an issue in proxyserver.py causes the leakage of Langfuse API keys when an error occurs while parsing team settings. This vulnerability exposes sensitive information, including langfusesecret and langfusepublickey, which can provide full access to the Langfuse...

CVE-2022-28750

Zoom On-Premise Meeting Connector Zone Controller ZC before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be...

libxml2 Resource Management Error Vulnerability

libxml2 is an open source library used to parse XML documents . It is written in C, and can be called for a variety of languages , such as C, C++, XSH. A resource management error vulnerability exists in libxml2 versions prior to 2.9.11. This vulnerability can be exploited to trigger post-release...

ClamAV 安全漏洞

ClamAV Clam AntiVirus is a free and open source antivirus program from the Clamav team. The program is used to detect Trojans, viruses, malware and other malicious threats. ClamAV has a security vulnerability that can be exploited by attackers to trigger a denial of service by parsing ClamAV file...

Denial Of Service (DoS)

libmicrodns is vulnerable to denial of service. When an error occurs while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker can send a malicious mDNS message repeatedly to trigger this vulnerability...

CVE-2019-11715

Due to an error while parsing page content, it is possible for properly sanitized user input to be misinterpreted and lead to XSS hazards on web sites in certain circumstances. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

CVE-2019-11715

Due to an error while parsing page content, it is possible for properly sanitized user input to be misinterpreted and lead to XSS hazards on web sites in certain circumstances. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

Android 7 - 9 VideoPlayer - ihevcd_parse_pps Out-of-Bounds Write

Android 7 - 9 VideoPlayer - ihevcdparsepps Out-of-Bounds Write CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can...

IBM Cognos Business Intelligence - XML External Entity Information Disclosure

source: https://www.securityfocus.com/bid/63719/info IBM Cognos Business Intelligence is prone to an information-disclosure vulnerability due to an error when parsing XML external entities. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attack...

Adobe Shockwave Player Multiple Vulnerabilities-01 July13 (Mac OS X)

This host is installed with Adobe Shockwave player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeshockwaveplayermultvuln01jul13macosx.nasl 6086 2017-05-09 09:03:30Z teissa $ Adobe Shockwave Player Multiple Vulnerabilities-01 July13 Mac OS X Authors: Thanga Praka...