Lucene search
K

3114 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:31 p.m.10 views

CVE-2026-33448

CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump the contents of a small portion of memory to the log files potentially revealing secrets...

4.8CVSS5.5AI score0.001EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.18 views

PT-2026-47079

An authenticated format string vulnerability exists in the ONVIF Subscribe service in Tapo C520WS v2 due to improper handling of externally supplied parameters within formatting functions. An attacker may inject crafted format strings into event subscription requests or notification generation pa...

6.8CVSS5.5AI score0.00174EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/26 1:6 p.m.28 views

cve-database

Vulnerability Report: Format String Vulnerability in D-Link DC...

6.2AI score
Exploits0
OSV
OSV
added 2026/05/22 1:17 p.m.15 views

OESA-2026-2382 libpq security update

PostgreSQL is a powerful, open source object-relational database system that uses and extends the SQL language combined with many features that safely store and scale the most complicated data workloads. This package provides the essential shared library for any PostgreSQL client program or...

8.8CVSS6.6AI score0.00668EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2026/05/22 2:21 a.m.14 views

SUSE CVE-2026-7835

A format string argument mismatch in Netatalk 3.0.3 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted input that triggers incorrect format string processing...

3.1CVSS5.8AI score0.00294EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/21 7:35 a.m.12 views

CVE-2026-7835

A format string argument mismatch in Netatalk 3.0.3 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted input that triggers incorrect format string processing...

3.1CVSS5.8AI score0.00294EPSS
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2026/05/09 1:45 p.m.143 views

Exploit for Use of Externally-Controlled Format String in Ghs Integrity_Rtos

🛡️ CVE-2019-7711: Green Hills INTEGRITY RTOS Information Lea...

7.5CVSS7.1AI score0.01499EPSS
Exploits2
OSV
OSV
added 2026/05/07 5:22 p.m.9 views

JLSEC-2026-476

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file...

7.8CVSS7.5AI score0.02409EPSS
Exploits1References10
OSV
OSV
added 2026/05/03 9:56 a.m.7 views

OESA-2026-2160 nano security update

Nano is a tiny GNU editor Security Fixes: A flaw was found in nano. In environments with permissive umask settings, a local attacker can exploit incorrect directory permissions 0777 instead of 0700 for the /.local directory. This allows the attacker to inject a malicious .desktop launcher, which...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/03 8:2 a.m.10 views

Nano: nano: format string vulnerability leads to denial of service

...

5.5CVSS5.8AI score0.00108EPSS
Exploits0
NVD
NVD
added 2026/04/30 8:16 p.m.7 views

CVE-2026-33448

CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump the contents of a small portion of memory to the log files potentially revealing secrets...

4.8CVSS0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/30 7:47 p.m.31 views

CVE-2026-33448 Format string vulnerability in MacOS clients prior to 14.50

CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump the contents of a small portion of memory to the log files potentially revealing secrets...

4.8CVSS0.001EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/30 12:0 a.m.10 views

PT-2026-36170

Name of the Vulnerable Software and Affected Versions Secure Access client for MacOS versions prior to 14.50 Description A format string issue exists in the logging subsystem. Attackers controlling a modified server can force the client to dump small portions of memory into log files, which may...

4.8CVSS5.8AI score0.001EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/24 1:34 a.m.6 views

SUSE CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/22 9:16 a.m.6 views

CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/22 8:30 a.m.5 views

CVE-2026-6843 Nano: nano: format string vulnerability leads to denial of service

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/22 8:30 a.m.5 views

CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/22 8:30 a.m.70 views

CVE-2026-6843 Nano: nano: format string vulnerability leads to denial of service

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS0.00108EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/22 8:30 a.m.6 views

CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.3AI score0.00108EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/04/22 8:30 a.m.12 views

CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References2
Rows per page
Query Builder