Lucene search
+L

29 matches found

Positive Technologies
Positive Technologies
added 2026/05/09 12:0 a.m.28 views

PT-2026-39424

Name of the Vulnerable Software and Affected Versions OSGeo gdal versions prior to 3.13.0RC1 Description A heap-based buffer overflow exists in the SWSDfldsrch function within the frmts/hdf4/hdf-eos/SWapi.c file. This issue can be triggered through local access by executing a manipulation...

5.5CVSS6.2AI score0.00205EPSS
Exploits1References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0713

Malware in sbrugna...

9.8CVSS9.3AI score0.02999EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-5403

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00399EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: 389-ds:1.4 (TSSA-2024:0206)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0206 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

5.5CVSS5.6AI score0.00304EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0041: tigervnc (ALINUX3-SA-2025:0041)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0041 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-26594: A use-after-free flaw was...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/03/31 12:0 a.m.18 views

Amazon Linux 2023 : xorg-x11-server-Xwayland, xorg-x11-server-Xwayland-devel (ALAS2023-2025-895)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-895 advisory. A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2025/03/27 12:0 a.m.12 views

Amazon Linux 2 : xorg-x11-server (ALAS-2025-2791)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2791 advisory. A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to free...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References18
Amazon
Amazon
added 2025/03/26 12:0 a.m.6 views

Important: xorg-x11-server-Xwayland

Issue Overview: A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free. CVE-2025-26594 A buffer overflow flaw was found ...

7.8CVSS8.2AI score0.00485EPSS
Exploits0
Amazon
Amazon
added 2025/03/06 12:0 a.m.8 views

Important: xorg-x11-server

Issue Overview: A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free. CVE-2025-26594 A buffer overflow flaw was found ...

7.8CVSS8.6AI score0.00485EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-1062

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in logentryattr. CVE-2024-1062...

5.5CVSS6.2AI score0.00304EPSS
Exploits0References4
NVD
NVD
added 2025/02/25 4:15 p.m.13 views

CVE-2025-26596

A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in XkbSizeKeySyms differs from what is written in XkbWriteKeySyms, which may lead to a heap-based buffer overflow...

7.8CVSS0.00399EPSS
Exploits0References18
CVE
CVE
added 2025/02/25 3:54 p.m.169 views

CVE-2025-26596

CVE-2025-26596 is a heap/buffer overflow in X.Org/Xwayland affecting XkbWriteKeySyms() due to a mismatch with XkbSizeKeySyms() that can lead to a heap-based overflow. Connected advisories (Astra Linux and various Amazon Linux advisories for xorg-x11-server-Xwayland/Xorg) confirm the issue and lis...

7.8CVSS7.5AI score0.00399EPSS
Exploits0References18Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/25 3:54 p.m.5 views

CVE-2025-26596

A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in XkbSizeKeySyms differs from what is written in XkbWriteKeySyms, which may lead to a heap-based buffer overflow. Mitigation Mitigation for this issue is either not available or the currently available options...

7.8CVSS7AI score0.00399EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/08/08 12:0 a.m.6 views

The vulnerability of the OLE DB driver for SQL Server, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the OLE DB driver for SQL Server is related to buffer overflow in the “heap”. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...

10CVSS6.5AI score0.01854EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/02 8:2 a.m.5 views

389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars (in log_entry_attr)

A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in logentryattr...

5.5CVSS5.7AI score0.00304EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.23 views

RHEL 7 : 389-ds-base (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - 389-ds-base: access control bypass by query filter in LDAP terms optimiser CVE-2022-1949 - 389-ds-base...

7.1AI score0.01394EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/08/24 4:15 p.m.28 views

CVE-2021-4214

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service...

5.5CVSS6.8AI score0.00505EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.2 views

ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00452EPSS
Exploits0References5
OSV
OSV
added 2019/12/20 6:24 a.m.12 views

SUSE-SU-2019:3372-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-15213: An issue was discovered in the Linux kernel, there was a use-after-free caused by a malicious USB device in the...

10CVSS9.2AI score0.16908EPSS
Exploits2References186
RedHat Linux
RedHat Linux
added 2017/05/09 12:29 p.m.9 views

Qemu: cirrus: heap buffer overflow via vnc connection

A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged user/process inside a guest could use this flaw to crash...

9.9CVSS7.8AI score0.04448EPSS
Exploits0References4
Rows per page
Query Builder