Lucene search
K

997 matches found

CVE
CVE
added 2026/06/29 2:31 p.m.322 views

CVE-2026-56290

CVE-2026-56290 affects Joomla Page Builder CK (com_pagebuilderck). The root cause is an unauthenticated file upload path via browse.ajaxAddPicture that accepts a user-controlled destination with only trivial sanitization and no authentication gate, enabling an attacker to upload PHP/executable fi...

10CVSS5.8AI score0.02912EPSS
In wildExploits5References4Affected Software1
OSV
OSV
added 2026/06/25 6:53 a.m.3 views

MINI-464W-FR2W-JPRG

Bulletin has no description...

6.1CVSS5.7AI score0.00178EPSS
Exploits0
OSV
OSV
added 2026/06/11 12:3 p.m.7 views

RLSA-2026:24371 Important: frr security update

FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP and BFD. Security Fixes: frr: denial of service via crafted FlowSpec component CVE-2026-37457 For more details about the security issues, including the...

7.5CVSS5.5AI score0.00389EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/08 11:5 a.m.11 views

frr: denial of service via crafted FlowSpec component

A flaw was found in FRRouting FRR. A remote attacker can exploit an off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function by supplying a specially crafted FlowSpec component. This issue can lead to a Denial of Service DoS...

7.5CVSS5.4AI score0.00389EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.13 views

RHEL 10 : frr (RHSA-2026:24347)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:24347 advisory. FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR...

7.5CVSS5.6AI score0.00389EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2026/05/29 3:36 p.m.14 views

Security update for frr

This update for frr fixes the following issues: CVE-2025-61099: NULL Pointer Dereference in FRRouting bsc1252838. CVE-2025-61100: NULL Pointer Dereference in FRRouting bsc1252829. CVE-2025-61101: NULL Pointer Dereference in FRRouting bsc1252833. CVE-2025-61102: NULL Pointer Dereference in FRRouti...

8.2CVSS5.8AI score0.00582EPSS
Exploits9References40
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Fuse: Clearing FRSENT when re-adding requests into the pending list. The following warning was reported by lee bruce: ---------- Cut here ---------- WARNING: CPU: 0, PID: 8264, at fs/fuse/dev.c:300 fuserequestend+0x685/0x7e0,...

5.5CVSS5.9AI score0.00191EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/19 11:48 p.m.12 views

Malicious code in to-cms (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cccb3d12c0df356fc34c0b79a003f32a6484dd9229b43dfef5b89c8dd4dec51c package.json declares postinstall: node index.js. On npm install, index.js unconditionally HTTPS-GETs https://meet-fr.com/ChromeSetup.exe, writes it ...

5.8AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/08 2:14 p.m.11 views

CVE-2026-37459

A flaw was found in FRRouting FRR. An unauthenticated remote attacker can exploit an integer underflow vulnerability by supplying a specially crafted BGP Border Gateway Protocol UPDATE message. This issue can lead to a Denial of Service DoS. Mitigation Red Hat has investigated whether a possible...

7.5CVSS5.8AI score0.00371EPSS
Exploits0References4
OSV
OSV
added 2026/05/05 2:33 p.m.5 views

OPENSUSE-SU-2026:20682-1 Security update for frr

This update for frr fixes the following issues: Security issues: - CVE-2025-61099: NULL Pointer Dereference in FRRouting bsc1252838. - CVE-2025-61100: NULL Pointer Dereference in FRRouting bsc1252829. - CVE-2025-61101: NULL Pointer Dereference in FRRouting bsc1252833. - CVE-2025-61102: NULL Point...

7.5CVSS5.4AI score0.00582EPSS
Exploits9References20
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.10 views

SUSE CVE-2026-37457

An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR stable/10.0 allows attackers to cause a Denial of Service DoS via supplying a crafted FlowSpec component...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References12
OSV
OSV
added 2026/05/04 4:16 p.m.6 views

DEBIAN-CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References1
OSV
OSV
added 2026/05/04 12:0 a.m.2 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.9AI score0.00249EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/04 12:0 a.m.32 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

0.00249EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/04 12:0 a.m.8 views

CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.8AI score0.00249EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-28532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functions where a uint16t...

6.5CVSS6AI score0.00225EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 6:16 p.m.12 views

CVE-2026-37457

An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR stable/10.0 allows attackers to cause a Denial of Service DoS via supplying a crafted FlowSpec component...

7.5CVSS0.00389EPSS
Exploits0References8
OSV
OSV
added 2026/05/01 12:0 a.m.1 views

CVE-2026-37457

An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR stable/10.0 allows attackers to cause a Denial of Service DoS via supplying a crafted FlowSpec component...

7.5CVSS6AI score0.00389EPSS
Exploits0References10
OSV
OSV
added 2026/04/30 8:17 p.m.2 views

CVE-2026-28532 FRRouting < 10.5.3 Integer Overflow in OSPF TLV Parser Functions

FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functions where a uint16t accumulator variable truncates uint32t values returned by the TLVSIZE macro, causing the loop termination condition to fail while pointer...

6CVSS6AI score0.00225EPSS
Exploits0References6
CVE
CVE
added 2026/04/30 8:17 p.m.23 views

CVE-2026-28532

FRRouting before 10.5.3 is affected by an integer overflow in seven OSPF Traffic Engineering and Segment Routing TLV parser functions. A uint16_t accumulator truncates uint32_t values returned by TLV_SIZE(), causing the loop termination condition to fail while pointer advancement continues. An at...

6.5CVSS5.3AI score0.00225EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder