2 matches found
CVE-2026-34527
Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high nibble of each byte is shifted right by 8 instead of 4, which always produces zero for an 8-bit...
Expat XML Parser Denial of Service Vulnerability
Expat is a C-based XML parser library , it uses a stream-oriented parser . Expat's XML parser fails to use proper entropy for hash initialization, allowing a remote attacker to exploit a vulnerability that could be exploited to construct special XML documents that would trick an application into...