Lucene search
K

73989 matches found

CNNVD
CNNVD
added 2026/03/30 12:0 a.m.10 views

FreeRDP 安全漏洞

FreeRDP is an open source Remote Desktop Protocol RDP implementation library and client . FreeRDP suffers from a heap buffer overflow vulnerability. The vulnerability arises due to an out-of-bounds heap memory write due to a bmpSize synchronization error in the persistent cache. An attacker can...

7.1CVSS6AI score0.001EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.7 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open source Remote Desktop Protocol RDP implementation library and client . FreeRDP suffers from a double release vulnerability. The vulnerability is caused by a double release problem in the memory release process of the kerberosAcceptSecurityContext and...

5.3CVSS5.8AI score0.00282EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.1 views

Fedora 44 : pyOpenSSL (2026-5697f4e025)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5697f4e025 advisory. Update to version 26.0.0 - Added support for using aws-lc instead of OpenSSL. - Properly raise an error if a DTLS cookie callback returned a cookie...

9.8CVSS6AI score0.00704EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.16 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1487)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1487 advisory. In the Linux kernel, the following vulnerability has been resolved: md: suspend array while updating raiddisks via sysfs CVE-2025-71225 In the Linux kernel, the following vulnerability has bee...

8.8CVSS5.8AI score0.00344EPSS
Exploits6References66
AlmaLinux
AlmaLinux
added 2026/03/30 12:0 a.m.4 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2026/03/30 12:0 a.m.14 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: drm/sched: Fix potential double free in drmschedjobaddresvdependencies CVE-2025-40096 kernel: Linux...

8.8CVSS7.1AI score0.0024EPSS
Exploits0References18
Fedora
Fedora
added 2026/03/29 12:51 a.m.7 views

[SECURITY] Fedora 43 Update: python-ply-3.11-33.fc43

PLY is a straightforward lex/yacc implementation. Here is a list of its essential features: It is implemented entirely in Python. It uses LR-parsing which is reasonably efficient and well suited for larger grammars. PLY provides most of the standard lex/yacc features including support for empty...

9.8CVSS7.3AI score0.16903EPSS
Exploits3
Fedora
Fedora
added 2026/03/29 12:18 a.m.5 views

[SECURITY] Fedora 44 Update: python-ply-3.11-33.fc44

PLY is a straightforward lex/yacc implementation. Here is a list of its essential features: It is implemented entirely in Python. It uses LR-parsing which is reasonably efficient and well suited for larger grammars. PLY provides most of the standard lex/yacc features including support for empty...

9.8CVSS7.3AI score0.16903EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2026/03/28 6:26 p.m.2 views

SUSE CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.9AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/28 6:19 p.m.7 views

SUSE CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released...

4.7CVSS5.8AI score0.00121EPSS
Exploits0References16
EUVD
EUVD
added 2026/03/28 9:31 a.m.3 views

EUVD-2026-16909

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.8AI score0.00121EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/28 9:15 a.m.39 views

CVE-2026-4994 wandb OpenUI APIStatusError server.py generic_exception_handler information exposure

A vulnerability was found in wandb OpenUI up to 1.0/3.5-turb. Affected is the function genericexceptionhandler of the file backend/openui/server.py of the component APIStatusError Handler. The manipulation of the argument key results in information exposure through error message. Access to the...

5.1CVSS0.00198EPSS
Exploits0References4
CVE
CVE
added 2026/03/28 9:15 a.m.14 views

CVE-2026-4994

CVE-2026-4994 affects wandb OpenUI up to 1.0/3.5-turb. The vulnerable component is generic_exception_handler in backend/openui/server.py of the APIStatusError Handler. The issue arises from manipulation of the argument key, leading to information exposure through error messages. Access to the loc...

5.1CVSS5.4AI score0.00198EPSS
Exploits0References4
NVD
NVD
added 2026/03/28 8:15 a.m.2 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS0.00121EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/03/28 8:15 a.m.5 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
OSV
OSV
added 2026/03/28 7:26 a.m.10 views

MGASA-2026-0071 Updated nodejs packages fix security vulnerabilities

Incomplete fix for CVE-2026-21637: loadSNI in tlswrap.js lacks try/catch leading to Remote DoS. CVE-2026-21637 Denial of Service via proto header name in req.headersDistinct Uncaught TypeError crashes Node.js process. CVE-2026-21710 Timing side-channel in HMAC verification via memcmp in...

7.5CVSS5.9AI score0.26356EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/28 7:16 a.m.35 views

CVE-2026-23399 nf_tables: nft_dynset: fix possible stateful expression memleak in error path

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

0.00121EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/28 7:16 a.m.3 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.8AI score0.00121EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/03/28 7:16 a.m.26 views

CVE-2026-23399

CVE-2026-23399 concerns the Linux kernel nf_tables code: when cloning the second stateful expression in a dynset element, the first expression could remain unfreed on error, causing a stateful memleak in error paths. The provided CVE description confirms a resolution in the kernel, with backtrace...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/03/28 7:16 a.m.2 views

CVE-2026-23399 nf_tables: nft_dynset: fix possible stateful expression memleak in error path

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.7AI score0.00121EPSS
Exploits0References7
Rows per page
Query Builder