Lucene search
K

352 matches found

CVE
CVE
added 2026/03/06 3:35 p.m.69 views

CVE-2026-26018

CoreDNS prior to version 1.14.2 contains a DoS in the loop-detection plugin due to a predictable PRNG used for a secret query name and a fatal error handler that terminates the process. The issue can crash the DNS server when processing specially crafted DNS queries and is classified with CVSS v3...

7.5CVSS5.7AI score0.01068EPSS
Exploits1References8Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/06 3:35 p.m.2 views

CVE-2026-26018 CoreDNS Loop Detection Denial of Service Vulnerability

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a denial of service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable...

7.5CVSS5.7AI score0.01068EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.8 views

PT-2026-23722

Name of the Vulnerable Software and Affected Versions CoreDNS versions prior to 1.14.2 Description CoreDNS is a DNS server that utilizes chained plugins. A denial of service condition exists in the loop detection plugin due to a predictable pseudo-random number generator PRNG used for generating ...

9.9CVSS5.8AI score0.02359EPSS
Exploits12References150
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005495)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005495 advisory. In the Linux kernel, the following vulnerability has been resolved: igb: Do not bring the device up after non-fatal error Commit 004d25060c78 igb: Fix igbdown hung o...

5.5CVSS6.7AI score0.00258EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/02/20 7:39 p.m.4 views

CVE-2026-26201

emp3r0r is a C2 designed by Linux users for Linux environments. Prior to version 3.21.2, multiple shared maps are accessed without consistent synchronization across goroutines. Under concurrent activity, Go runtime can trigger fatal error: concurrent map read and map write, causing C2 process cra...

7.5CVSS5.5AI score0.00291EPSS
Exploits1References1
Snyk
Snyk
added 2026/02/17 9:27 p.m.2 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition in which maps from multiple components may be accessed without synchronization. When under heavy concurrent activity, either spontaneous or attacker-generated, the process can be caused to panic and crash with fatal error...

7.5CVSS5.5AI score0.00291EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/20 8:48 p.m.19 views

CVE-2026-21640

HackerOne community member Faraz Ahmed PakCyberbot has reported a format string injection in the Revive Adserver settings. When specific character combinations are used in a setting, the admin user console could be disabled due to a fatal PHP error...

2.7CVSS0.0021EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

Revive Adserver security vulnerability

Revive Adserver is a set of open-source advertising management systems developed by the Revive Adserver team. This system offers functions such as advertising placement, ad slot management, and data statistics. There is a security vulnerability in Revive Adserver; this vulnerability stems from...

2.7CVSS5.8AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2026/01/16 11:15 p.m.3 views

DEBIAN-CVE-2026-22816

Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving dependencies in versions before 9.3.0, some exceptions were not treated as fatal errors and would not cause a repository to be disabled. If a build encountered one of these...

7.4CVSS5.4AI score0.00149EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.9 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: igc: Do not fail igcprobe on LED setup errors When igcledsetup fails, igcprobe fails, leading to a kernel panic in freenetdev. This occurs because unregisternetdev is not called. This behavior can be tested using the...

5.5CVSS5.9AI score0.00151EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.12 views

CVE-2025-53965

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking...

5.3CVSS6.9AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/12/03 5:15 p.m.4 views

CVE-2025-53965

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking...

5.3CVSS0.00256EPSS
Exploits0References2
CVE
CVE
added 2025/12/03 12:0 a.m.13 views

CVE-2025-53965

The CVE-2025-53965 entry concerns a lack of bounds checking in the function that decodes the SOR transparent container, affecting Samsung Mobile Processor, Wearable Processor, and Modem Exynos lines (models including 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930,...

5.3CVSS6.5AI score0.00256EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.4 views

PT-2025-48963

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980 Samsung Mobile Processor, Wearable Processor, and Modem Exynos 990 Samsung Mobile Processor, Wearable Processor, and Modem Exynos 850 Samsung Mobile Processor, Wearable...

5.3CVSS6.4AI score0.00256EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/03 12:0 a.m.14 views

CVE-2025-53965

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking...

0.00256EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/20 9:30 p.m.3 views

EUVD-2025-198351

Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an administrator user to disable the admin user console due to a fatal PHP error...

2.7CVSS3.6AI score0.00374EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/20 7:10 p.m.2 views

CVE-2025-52666

Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an administrator user to disable the admin user console due to a fatal PHP error...

2.7CVSS3.8AI score0.00374EPSS
Exploits1References1
CVE
CVE
added 2025/11/20 7:10 p.m.24 views

CVE-2025-52666

Summary: CVE-2025-52666 affects Revive Adserver (versions 5.5.2, 6.0.1 and earlier). The issue is an improper neutralisation of format characters in the settings, which leads to a fatal PHP error that can cause the administrator user console to be disabled. The incident is described across multip...

2.7CVSS6.4AI score0.00374EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/20 12:0 a.m.6 views

PT-2025-47616

Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an administrator user to disable the admin user console due to a fatal PHP error...

2.7CVSS6.8AI score0.00374EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.5 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Detection of Error Condition Without Action (CVE-2024-50040)

In the Linux kernel, the following vulnerability has been resolved: igb: Do not bring the device up after non-fatal error. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

5.5CVSS6AI score0.00258EPSS
Exploits0References7
Rows per page
Query Builder