CVE-2026-28918

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Parsing a maliciously crafted file may lead to an unexpected app termination...

CVE-2026-28936

CVE-2026-28936 affects Apple platforms and is described as a vulnerability where processing a maliciously crafted file may lead to an unexpected app termination. It has been fixed in multiple updates: iOS 18.7.9 and iPadOS 18.7.9; iOS 26.5 and iPadOS 26.5; macOS Sonoma 14.8.7; macOS Tahoe 26.5; a...

PT-2026-7754

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 macOS Sonoma versions prior to 14.8.4 macOS Tahoe versions prior to 26.3 visionOS versions prior to 26.3 Description An out-of-bounds write issue exists due to insufficient bounds...

Wireshark 4.6.x < 4.6.3 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 4.6.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.3 advisory. - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service...

MiracleLinux 7 : binutils-2.27-34.base.el7 (AXSA:2018-3397:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3397:04 advisory. binutils: Improper bounds check in coffgen.c:coffpointerizeaux allows for denial of service when parsing a crafted COFF file CVE-2018-7208 binutils:...

MiracleLinux 4 : rsyslog-5.8.10-2.AXS4 (AXSA:2012-586:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-586:02 advisory. Rsyslog is an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the dabitags function in the cp-demangle.c file. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted PE file. Remediation There is no fixed version for...

CVE-2025-63744

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the load function of bindyldcache.c. Processing a crafted file can cause a segmentation fault and crash the program...

EUVD-2021-12128

Malware in sbrugna...

EUVD-2020-20687

Malware in sbrugna...

EUVD-2014-8918

Malware in sbrugna...

EUVD-2014-3455

Malware in sbrugna...

EUVD-2017-11761

Malware in sbrugna...

EUVD-2018-7720

Malware in sbrugna...

EUVD-2023-1450

Malicious code in bioql PyPI...

EUVD-2022-40066

Malicious code in bioql PyPI...

EUVD-2025-23943

Malicious code in bioql PyPI...

EUVD-2022-46282

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2016-9824

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service crash via a crafted file. CVE-2016-9824 Note tha...

Linux Distros Unpatched Vulnerability : CVE-2025-25193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of...