Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2026/06/16 8:39 a.m.11 views

CVE-2026-12087

A flaw was found in the perl-Socket component. The packipmreqsource function, which handles network socket operations, contains an out-of-bounds heap read vulnerability. An attacker providing a specially crafted input can cause the system to read beyond the intended memory buffer, potentially...

9.1CVSS4.9AI score0.00389EPSS
Exploits0References5
OSV
OSV
added 2026/05/29 1:35 p.m.9 views

OESA-2026-2509 dnsmasq security update

Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used for tethering on smartphones and portabl...

8.8CVSS6.4AI score0.07237EPSS
Exploits4References7
OSV
OSV
added 2026/05/13 4:34 p.m.9 views

SUSE-SU-2026:21640-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...

8.8CVSS6AI score0.07237EPSS
Exploits4References19
Cvelist
Cvelist
added 2026/05/11 4:47 p.m.35 views

CVE-2026-4891 CVE-2026-4891

A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

0.06226EPSS
Exploits0References6
OSV
OSV
added 2026/05/09 12:33 p.m.12 views

OESA-2026-2255 libvncserver security update

libvncserver is a set of programs using the RFB Remote Frame Buffer protocol. They are designed to "export" a frame buffer via net: you set up a server and can connect to it via VNC viewers. If the server supports WebSockets which LibVNCServer does, you can also connect using an in-browser VNC...

8.1CVSS5.9AI score0.05322EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-42477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds read vulnerability in RWObjReader::read in the OBJ file parser in Open CASCADE Technology OCCT V800rc5 allows user-assisted attackers...

7.1CVSS5.9AI score0.00104EPSS
Exploits0References3
OSV
OSV
added 2026/04/17 1:0 p.m.11 views

OESA-2026-1937 sleuthkit security update

The Sleuth Kit previously known as TASK is a collection of UNIX-based command line file system forensic tools that allow an investigator to examine NTFS, FAT, FFS, EXT2FS, EXT3FS and ExFAT file systems of a suspect computer in a non-intrusive fashion. The tools have a layer-based design and can...

8.4CVSS6.5AI score0.00167EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-66037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to...

6.8CVSS5.6AI score0.00253EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/30 9:43 p.m.18 views

CVE-2026-33985 FreeRDP: ClearCodec Glyph Cache Count Desync - Heap OOB Read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2...

5.9CVSS0.00205EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.4 views

CVE-2026-4159

1-byte OOB heap read in wcPKCS7DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wcPKCS7DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted...

2.1CVSS5.8AI score0.00095EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 8:17 p.m.5 views

AZL-77547 CVE-2026-2303 affecting package telegraf for versions less than 1.29.4-21

The mongo-go-driver repository contains CGo bindings for GSSAPI Kerberos authentication on Linux and macOS. The C wrapper implementation contains a heap out-of-bounds read vulnerability due to incorrect assumptions about string termination in the GSSAPI standard. Since GSSAPI buffers are not...

6.9CVSS5.8AI score0.00223EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68118

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP's certificate handling code on Windo...

9.1CVSS6AI score0.00214EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-17273

Malware in sbrugna...

5.5CVSS6.3AI score0.01358EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/23 6:47 a.m.9 views

CVE-2024-52545

An unauthenticated attacker can perform an out of bounds heap read in the IQ Service TCP port 9876. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111...

6.5CVSS7.1AI score0.00719EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2023/11/14 4:9 p.m.7 views

opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package

A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...

7.1CVSS6AI score0.00295EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/02/03 10:48 a.m.6 views

CVE-2022-21730 Out of bounds read in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of FractionalAvgPoolGrad does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

8.1CVSS8AI score0.00815EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2018-0113)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.3AI score0.03273EPSS
Exploits1References4
CNVD
CNVD
added 2021/05/17 12:0 a.m.9 views

Google TensorFlow Heap Read Vulnerability

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a heap read vulnerability. An attacker can exploit the vulnerability to trigger an OOB read from the heap...

7.1CVSS6.5AI score0.0024EPSS
Exploits1References1
CNVD
CNVD
added 2020/11/05 12:0 a.m.3 views

Heap out-of-bounds read vulnerability exists in ABC Lookout of Shanghai Zhanmeng Network Technology Co. Ltd (CNVD-2020-64623)

ABC Viewer is a permanent free image viewing software, intelligently turns on hardware acceleration and supports a variety of image formats. ABC Viewer has a heap out-of-bounds read vulnerability that can be exploited by attackers to cause a denial of service...

6.8AI score
Exploits0
OSV
OSV
added 2020/06/08 7:32 a.m.6 views

SUSE-SU-2020:1553-1 Security update for libexif

This update for libexif to 0.6.22 fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in...

9.1CVSS7.2AI score0.04059EPSS
Exploits1References19
Rows per page
Query Builder