CVE-2026-0052

In multiple functions of ubsanthrowingruntime.cpp, there is a possible way to cause a crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-37232

OpenAirInterface5G 2.4.0 (nr-softmodem) E2SM-KPM RAN Function PRB utilization calculation (fill_RRU_PrbTotDl/Ul in openair2/E2AP/RAN_FUNCTION/O-RAN/ran_func_kpm_subs.c) divides PRB difference by the previous total_prb_aggregate, missing a zero-check. If two consecutive samples are identical and a...

Splunk Enterprise 9.3.0 < 9.3.12, 9.4.0 < 9.4.11, 10.0.0 < 10.0.6, 10.2 < 10.2.3 (SVD-2026-0505)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0505 advisory. - Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr,...

VSCO 安全漏洞

VSCO is a photo and video editor developed by the VSCO company. Version VSCO 1.1.1.0 contains a security vulnerability. This vulnerability arises from the search function’s improper handling of overly long strings, which may allow local attackers to cause the application to crash by submitting...

CVE-2019-25588 BulletProof FTP Server 2019.0.0.50 Denial of Service via DNS Address

BulletProof FTP Server 2019.0.0.50 contains a denial of service vulnerability in the DNS Address field that allows local attackers to crash the application by supplying an excessively long string. Attackers can enable the DNS Address option in the Firewall settings and paste a buffer of 700 bytes...

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via the GetSUCI function when processing a crafted 5GS Mobile Identity in a NAS Registration Request message. An attacker can cause a crash of the AMF component by sending a specially crafted message...

PT-2025-52289

Name of the Vulnerable Software and Affected Versions omec-project UPF version 2.1.3-dev Description A denial-of-service issue exists in the omec-project UPF pfcpiface component. Specifically, when a PFCP Session Establishment Request is sent to the UPF’s N4/PFCP endpoint without the mandatory...

PT-2025-47008

Name of the Vulnerable Software and Affected Versions radare2 versions 6.0.5 and earlier Description A flaw exists in radare2 where a specially crafted binary input can cause a segmentation fault due to a NULL pointer dereference within the info function of the bin ne.c file. This can lead to a...

CVE-2025-63288

In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service...

EUVD-2017-5554

Malware in sbrugna...

EUVD-2017-8668

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2024-26587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: netdevsim: don't try to destroy PHC on VFs PHC gets initialized in nsiminitnetdevsim,...

CVE-2025-32909 Libsoup: null pointer dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c

A flaw was found in libsoup. SoupContentSniffer may be vulnerable to a NULL pointer dereference in the sniffmp4 function. The HTTP server may cause the libsoup client to crash...

CVE-2025-21988 fs/netfs/read_collect: add to next->prev_donated

In the Linux kernel, the following vulnerability has been resolved: fs/netfs/readcollect: add to next-prevdonated If multiple subrequests donate data to the same "next" request depending on the subrequest completion order, each of them would overwrite the prevdonated field, causing data corruptio...

CVE-2025-21790

CVE-2025-21790 fixes a kernel-space issue in the vxlan code. The vulnerable path is in vxlan_vnigroup_init() not being checked by vxlan_init(), which can lead to a NULL dereference or general protection fault later when vxlan_dev is created/unregistered (local attacker with access to the kernel c...

BIT-ELASTICSEARCH-2024-43709 Elasticsearch allocation of resources without limits or throttling leads to crash

An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function...

AZL-54848 CVE-2024-56649 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: net: enetc: Do not configure preemptible TCs if SIs do not support Both ENETC PF and VF drivers share enetcsetuptcmqprio to configure MQPRIO. And enetcsetuptcmqprio calls enetcchangepreemptibletcs to configure preemptible TCs...

PT-2024-40804 · Git +1 · Libultrahdr

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include the crash type and state, which involve the ultrahdr::getYuv420Pixel...

CVE-2024-38661

In the Linux kernel, the following vulnerability has been resolved: s390/ap: Fix crash in AP internal function modifybitmap A system crash like this Failing address: 200000cb7df6f000 TEID: 200000cb7df6f403 Fault in home space mode while using kernel ASCE. AS:00000002d71bc007 R3:00000003fe5b8007...

PT-2024-40774 · Glslang · Glslang

Name of the Vulnerable Software and Affected Versions: glslang affected versions not specified Description: The issue is related to a crash in the glslang software, specifically in the glslang::TInfoSinkBase::location, glslang::TParseContextBase::outputMessage, and glslang::TParseContextBase::err...