Lucene search
K

211 matches found

NVD
NVD
added 2026/04/20 7:16 a.m.5 views

CVE-2026-6643

A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf and passing user-controlled data directly to printf. Due to the lack of PIE and Stack Canary protections, an authenticated remote attacker can exploit these to...

9.9CVSS0.00468EPSS
Exploits1References1
NVD
NVD
added 2026/04/09 8:16 p.m.10 views

CVE-2026-40087

LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.84 and 1.2.28, LangChain's f-string prompt-template validation was incomplete in two respects. First, some prompt template classes accepted f-string templates and formatted them without enforcing the same...

5.3CVSS0.00262EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.13 views

Fortinet多款产品 格式化字符串错误漏洞

Fortinet FortiManager is a product of the American company Fortinet. Fortinet FortiManager is a centralized network security management platform. Fortinet FortiAnalyzer is a centralized network security reporting solution. Fortinet FortiManager Cloud is a cloud-based network management software...

7.2CVSS5.8AI score0.00571EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.39 views

CVE-2026-24108

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may exploit the vulnerability by controlling the value of nptr. When this value is passed into the getMibPrefix function and concatenated using sprintf without proper size validation, it could lead to a buffer overflow vulnerabilit...

9.8CVSS6.2AI score0.00649EPSS
Exploits1References1
CVE
CVE
added 2026/03/02 12:0 a.m.15 views

CVE-2026-24111

CVE-2026-24111 affects the Tenda W20E router (v4.0br_V15.11.0.6). The issue arises when the value of the parameter userInfo is passed to the function addAuthUser and handled by a call to sscanf without proper size validation, which can lead to a buffer overflow . The public descriptions consisten...

9.8CVSS6.3AI score0.00649EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.7 views

CVE-2025-23709

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kiroro Formatted post formatted-post allows Reflected XSS.This issue affects Formatted post: from n/a through = 1.01...

7.1CVSS7.2AI score0.0036EPSS
Exploits0References1
OSV
OSV
added 2025/10/31 2:12 p.m.4 views

OESA-2025-2558 python-asteval security update

ASTEVAL provides a numpy-aware, safeish 'eval' function Security Fixes: ASTEVAL is an evaluator of Python expressions and statements. Prior to version 1.0.6, if an attacker can control the input to the asteval library, they can bypass asteval s restrictions and execute arbitrary Python code in th...

8.4CVSS7.7AI score0.00229EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-3463

Malware in sbrugna...

4.3CVSS8.3AI score0.04198EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-29313

Malware in sbrugna...

9.8CVSS9AI score0.01939EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0511

Malware in sbrugna...

5CVSS6.4AI score0.03126EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-14167

Malware in sbrugna...

6.5CVSS5.7AI score0.01055EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2021-2103

Malware in sbrugna...

9.8CVSS9.2AI score0.02467EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-11479

Malware in sbrugna...

6.5CVSS6.5AI score0.00897EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.4 views

Planet WGR-500 安全漏洞

The Planet WGR-500 is a WiFi router from Planet Corporation of Taiwan, China. A security vulnerability exists in the Planet WGR-500 v1.3411b190912 version, which stems from a formatted string vulnerability in the formPingCmd function, which could lead to memory corruption...

8.8CVSS6.4AI score0.04385EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-3255

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00301EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-24532

Malicious code in bioql PyPI...

8.8CVSS8.2AI score0.23618EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-17645

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00385EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-29724

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.0064EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-3362

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/14 10:27 a.m.4 views

CVE-2025-55198

A flaw was found in helm.sh/helm/v3. Improper validation of type errors during parsing of Chart.yaml and index.yaml files can trigger a panic. A remote attacker, requiring user interaction, can trigger this panic via a malformed chart file. This can lead to an application level denial of service...

6.5CVSS7AI score0.00309EPSS
Exploits0References5
Rows per page
Query Builder