Lucene search
K

17733 matches found

SUSE CVE
SUSE CVE
added 2026/06/19 1:53 a.m.8 views

SUSE CVE-2026-42055

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the...

8.1CVSS6.5AI score0.03552EPSS
Exploits1References5
OSV
OSV
added 2026/06/18 9:16 p.m.3 views

UBUNTU-CVE-2026-45696

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K High-Throughput JPEG 2000 decoder, htundoimpl in OpenEXRCore is vulnerable to a heap-buffer-overflow READ. The htundoimp...

8.3CVSS5.9AI score0.00263EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/06/18 8:20 p.m.20 views

CVE-2026-44663 OpenEXR: Integer overflow in the HTJ2K decoder leads to heap-buffer-overflow

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, an integer overflow in htundoimpl in src/lib/OpenEXRCore/internalht.cpp leads to a heap-buffer overflow when decoding a crafted...

6.1CVSS0.00199EPSS
Exploits1References2
OSV
OSV
added 2026/06/18 7:22 a.m.5 views

MGASA-2026-0220 Updated perl packages fix security vulnerabilities

Perl versions through 5.43.10 have a heap buffer overflow when compiling regular expressions with a repeated fixed string on 32-bit builds. CVE-2026-8376...

9.8CVSS5.6AI score0.00398EPSS
Exploits1References4
OSV
OSV
added 2026/06/16 6:32 p.m.2 views

CVE-2026-47747 stable-diffusion.cpp has a Heap-based Buffer Overflow

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode...

7.8CVSS6.1AI score0.0018EPSS
Exploits1References5
Veracode
Veracode
added 2026/06/16 6:12 p.m.8 views

Heap Buffer Overflow

Electron is vulnerable to Heap Buffer Overflow. The vulnerability is due to incorrect byte length calculations in Buffer operations, which allows an attacker to trigger out-of-bounds memory access resulting in heap buffer overflows or underflows...

9.3CVSS5.9AI score0.00253EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/16 6:53 a.m.4 views

SUSE-SU-2026:2403-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7verify bsc1266357. - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption bsc1266349. - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption bsc1266341....

8.8CVSS5.2AI score0.02719EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/06/16 12:0 a.m.8 views

SQLite < 3.53.2 Multiple Heap Buffer Overflows

The version of SQLite installed on the remote host is prior to 3.53.2. It is, therefore, affected by multiple vulnerabilities: - A heap-based buffer overflow vulnerability in the FTS5 full-text search extension allows attackers to cause a crash or execute arbitrary code by supplying a crafted...

8.5CVSS6.9AI score0.00175EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/16 12:0 a.m.11 views

RHEL 10 : gnutls (RHSA-2026:26409)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:26409 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such ...

9.8CVSS6AI score0.01335EPSS
Exploits2References28
EUVD
EUVD
added 2026/06/15 9:30 p.m.11 views

EUVD-2025-210145

A heap buffer overflow in the gfcencsetpssh function isomedia/drmsample.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.5AI score0.00235EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.7 views

EUVD-2025-210150

A heap buffer overflow in the gfisomvpconfignew function isomedia/avcext.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.5AI score0.00202EPSS
Exploits1References3
NVD
NVD
added 2026/06/15 8:16 p.m.10 views

CVE-2025-55652

A heap buffer overflow in the gfisomvpconfignew function isomedia/avcext.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS0.00202EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/06/15 7:15 p.m.10 views

CVE-2026-52720

A heap buffer overflow vulnerability was found in GStreamer's librfb RFB/VNC client. The rectangle bounds check incorrectly validates area rather than individual dimensions, allowing a malicious VNC server to send a rectangle that extends beyond the framebuffer. A remote attacker could set up a...

8.8CVSS6AI score0.0053EPSS
Exploits0References4
NVD
NVD
added 2026/06/15 6:16 p.m.17 views

CVE-2026-8357

LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of many opening tokens. The array that tracks nesting depth was allocated one element too small for that worst case, so such a formula wrote one element pa...

7.8CVSS0.00139EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/15 4:22 p.m.9 views

CVE-2026-6047 Heap buffer overflow in OOXML text box element import

LibreOffice can import documents in the OOXML format DOCX. A heap buffer overflow existed when replaying deferred parser events for a text box element. A handler object was assumed to be of one type and written to at that type's field layout, but it could be a smaller object, so the write landed...

6.9CVSS5.6AI score0.0012EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/15 4:22 p.m.9 views

CVE-2026-6047

LibreOffice can import documents in the OOXML format DOCX. A heap buffer overflow existed when replaying deferred parser events for a text box element. A handler object was assumed to be of one type and written to at that type's field layout, but it could be a smaller object, so the write landed...

6.9CVSS5.6AI score0.0012EPSS
Exploits0
CVE
CVE
added 2026/06/15 12:0 a.m.13 views

CVE-2025-55648

GPAC MP4Box v2.4 is affected by a heap buffer overflow in gf_opus_parse_packet_header (media_tools/av_parsers.c) that can cause a Denial of Service when a crafted MP4 file is processed. This is a DoS by exploiting a memory-protection flaw in the parser; CVSS notes a local attack with user interac...

5.5CVSS5.6AI score0.00235EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.14 views

PT-2026-49274

A heap buffer overflow in the gf opus parse packet header function media tools/av parsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.6AI score0.00235EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.19 views

PT-2026-49279

Name of the Vulnerable Software and Affected Versions GPAC MP4Box version 2.4 Description A heap buffer overflow occurs in the Opus audio stream parser component. This issue allows attackers to cause a Denial of Service DoS, which is a condition where a system or service becomes unavailable to it...

5.5CVSS6.1AI score0.00202EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.37 views

CVE-2025-55661

A heap buffer overflow in the Opus audio stream parser component of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

0.00202EPSS
Exploits1References1
Rows per page
Query Builder