Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/06/06 12:43 a.m.11 views

CVE-2026-44983

smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...

7.3CVSS5.9AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2026/05/26 10:16 p.m.6 views

DEBIAN-CVE-2026-44983

smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...

7.3CVSS6.1AI score0.00151EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/26 9:38 p.m.10 views

CVE-2026-44983 smallbitvec: Safe API Triggered Heap Buffer Overflow via Integer Overflow

smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...

7.3CVSS6.1AI score0.00151EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/26 9:38 p.m.15 views

EUVD-2026-32015

smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...

7.3CVSS6.1AI score0.00151EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/02/14 12:0 a.m.11 views

WordPress Custom Field Template Plugin <= 2.6 is vulnerable to Cross Site Scripting (XSS)

Software Custom Field Template Type Plugin Vulnerable versions = 2.6 Fixed in 2.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-25919 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9a3d14013fc0 Credits LVT-tholv2k Required privilege...

6.5CVSS6.6AI score0.0032EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/05/03 6:29 p.m.4 views

CVE-2018-10164

Stored Cross-site scripting XSS vulnerability in the TP-Link EAP Controller and Omada Controller versions 2.5.4Windows/2.6.0Windows allows authenticated attackers to inject arbitrary web script or HTML via the implementation of portalPictureUpload functionality. This is fixed in version...

5.4CVSS5.9AI score0.00626EPSS
Exploits3References2
Rows per page
Query Builder