Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34110 matches found

NVD
NVDadded 2026/04/09 3:16 p.m.4 views

CVE-2026-5440

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

7.5CVSS0.01887EPSS
Exploits0References3
NVD
NVDadded 2026/04/09 3:16 p.m.1 views

CVE-2026-5437

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

7.5CVSS0.00057EPSS
Exploits0References3
OSV
OSVadded 2026/04/09 3:16 p.m.3 views

DEBIAN-CVE-2026-5437

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

7.5CVSS7.6AI score0.00057EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/04/09 3:16 p.m.2 views

CVE-2026-5437

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

7.5CVSS5.8AI score0.00057EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2026/04/09 3:16 p.m.0 views

CVE-2026-5440

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

7.5CVSS5.8AI score0.01887EPSS
Exploits0References4
OSV
OSVadded 2026/04/09 3:16 p.m.2 views

UBUNTU-CVE-2026-5437

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

7.5CVSS5.8AI score0.00057EPSS
Exploits0References5
OSV
OSVadded 2026/04/09 3:16 p.m.2 views

UBUNTU-CVE-2026-5440

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

7.5CVSS5.8AI score0.01887EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/09 2:44 p.m.0 views

CVE-2026-5437

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

5.9AI score0.00057EPSS
Exploits0References4
CVE
CVEadded 2026/04/09 2:44 p.m.8 views

CVE-2026-5437

CVE-2026-5437 is an out-of-bounds read in DicomStreamReader during DICOM meta-header parsing. The vulnerability stems from insufficient input validation while processing malformed metadata structures, potentially causing reads beyond the allocated metadata buffer. Documents consistently describe ...

7.5CVSS5.9AI score0.00057EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/04/09 2:44 p.m.22 views

CVE-2026-5437 Out-of-Bounds Read in DicomStreamReader

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

0.00057EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/04/09 2:44 p.m.1 views

CVE-2026-5437 Out-of-Bounds Read in DicomStreamReader

An out-of-bounds read vulnerability exists in DicomStreamReader during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the allocated metadata buffer. Although this issue does not typically crash the server or expose data directly ...

7.2AI score0.00057EPSS
Exploits0References3
CVE
CVEadded 2026/04/09 2:43 p.m.10 views

CVE-2026-5440

The CVE describes a memory exhaustion vulnerability in the HTTP server caused by unbounded use of the Content-Length header. The server allocates memory directly from the attacker-supplied header value without an upper limit, so a crafted request with an extremely large Content-Length can cause e...

7.5CVSS5.9AI score0.01887EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/09 2:43 p.m.1 views

CVE-2026-5440 Memory Exhaustion via Unbounded Content-Length

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

5.8AI score0.01887EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/09 2:43 p.m.14 views

CVE-2026-5440 Memory Exhaustion via Unbounded Content-Length

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

0.01887EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/09 2:43 p.m.2 views

CVE-2026-5440

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the Content-Length header. The server allocates memory directly based on the attacker supplied header value without enforcing an upper limit. A crafted HTTP request containing an extremely large Content-Length val...

5.9AI score0.01887EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2026/04/09 1:38 p.m.5 views

Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header

A flaw was found in Node.js. A remote attacker can exploit this vulnerability by sending a specially crafted HTTP request that includes a header named proto. When a Node.js application processes this request and attempts to access distinct headers, it encounters an unhandled error, leading to an...

7.5CVSS5.9AI score0.00044EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/04/09 1:38 p.m.3 views

Important: Red Hat Security Advisory: nodejs22 security update

An update for nodejs22 is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

9.8CVSS7.2AI score0.00175EPSS
Exploits2References9
RedHat Linux
RedHat Linuxadded 2026/04/09 1:4 p.m.2 views

Important: Red Hat Security Advisory: nodejs:22 security update

An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.8AI score0.00175EPSS
Exploits2References10
RedHat Linux
RedHat Linuxadded 2026/04/09 1:4 p.m.9 views

Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header

A flaw was found in Node.js. A remote attacker can exploit this vulnerability by sending a specially crafted HTTP request that includes a header named proto. When a Node.js application processes this request and attempts to access distinct headers, it encounters an unhandled error, leading to an...

7.5CVSS7.2AI score0.00044EPSS
Exploits0References5
OSV
OSVadded 2026/04/09 12:10 a.m.6 views

OSV-2026-548 UNKNOWN in ojph::local::precinct::parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=500177411 Crash type: UNKNOWN Crash state: ojph::local::precinct::parse ojph::local::resolution::parseoneprecinct ojph::local::tile::parsetileheader...

5.8AI score
Exploits0References1
Rows per page
Query Builder