Lucene search
+L

3448 matches found

CNNVD
CNNVD
added 2026/06/05 12:0 a.m.11 views

7-Zip 缓冲区错误漏洞

7-Zip is an open-source compression software developed by 7-Zip. Versions 9.34 to 26.00 of 7-Zip contained a buffer error vulnerability, which was caused by an integer overflow in SquashFS fragment offsets. This vulnerability could allow attackers to manipulate node offset values to bypass fragme...

8.1CVSS5.7AI score0.00324EPSS
Exploits1References1
NVD
NVD
added 2026/06/04 3:16 a.m.12 views

CVE-2026-8829

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

7.5CVSS0.0031EPSS
Exploits0References4
OSV
OSV
added 2026/06/04 3:16 a.m.9 views

DEBIAN-CVE-2026-8829

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

7.5CVSS5.9AI score0.0031EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 2:3 a.m.8 views

CVE-2026-8829 HTML::Entities versions before 3.84 for Perl read freed heap memory in _decode_entities

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

5.9AI score0.0031EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/04 2:3 a.m.16 views

EUVD-2026-34194

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

7.5CVSS5.9AI score0.0031EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 2:3 a.m.27 views

CVE-2026-8829

CVE-2026-8829 : The Perl module HTML::Entities versions before 3.84 is affected. The vulnerability arises from the XS routine backing _decode_entities caching a pointer (repl) into the entity2char hash value SV. If an input SV matches a value SV in that hash and that value itself contains its own...

7.5CVSS5.9AI score0.0031EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 2:3 a.m.11 views

CVE-2026-8829

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

7.5CVSS5.9AI score0.0031EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 2:3 a.m.79 views

CVE-2026-8829 HTML::Entities versions before 3.84 for Perl read freed heap memory in _decode_entities

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

0.0031EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 2:3 a.m.3 views

CVE-2026-8829 HTML::Entities versions before 3.84 for Perl read freed heap memory in _decode_entities

HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer repl into the entity-value SV returned by hvfetch on the entity2char hash. When the input SV was identical to a value SV in that hash, and...

7.5CVSS6AI score0.0031EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.17 views

PT-2026-46135

Name of the Vulnerable Software and Affected Versions HTML::Entities versions prior to 3.84 Description The XS routine supporting decode entities caches a pointer repl to the entity-value SV returned by hv fetch on the entity2char hash. If the input SV is identical to a value SV in that hash and...

7.5CVSS5.4AI score0.0031EPSS
Exploits0References33
Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-8829

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTML::Entities versions before 3.84 for Perl read freed heap memory in decodeentities. The XS routine backing HTML::Entities::decodeentities cached a pointer re...

7.5CVSS6.2AI score0.0031EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/02 3:23 p.m.11 views

CVE-2026-45682 OpenTelemetry eBPF Instrumentation: CappedConcurrentHashMap leaks keys after removals

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the custom CappedConcurrentHashMap introduced for Java TLS state tracking never removes keys from its insertion-order queue when entries are deleted. In long-running...

5.1CVSS5.7AI score0.00161EPSS
Exploits1References2
OSV
OSV
added 2026/06/01 1:45 p.m.12 views

SUSE-SU-2026:21883-1 Security update for qemu

This update for qemu fixes the following issues - CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400. - CVE-2026-0665: out-of-bounds heap access can lead to a denial of service or potential memory corruption bsc1256484. - CVE-2026-2243: incorrect bounds check leads to heap...

7.8CVSS6.9AI score0.00143EPSS
Exploits1References13
Snyk
Snyk
added 2026/06/01 10:29 a.m.10 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to improper configuration of the LengthFieldBasedFrameDecoder value. An attacker can cause the application to exhaust JVM heap memory and disrupt service availability by sending...

8.7CVSS5.5AI score0.0058EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/01 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-8796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srldecoder.c, srlreadobject and srlreadhash...

8.1CVSS5.5AI score0.00399EPSS
Exploits0References3
OSV
OSV
added 2026/05/29 8:43 a.m.7 views

OPENSUSE-SU-2026:20842-1 Security update for openjpeg2

This update for openjpeg2 fixes the following issue - CVE-2025-54874: openjpeg: missing error check can lead to the use of an uninitialized pointer and cause an out-of- bounds heap memory write bsc1247650...

9.8CVSS7.3AI score0.00636EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.23 views

PT-2026-44989

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.26.0 Description The planar bitmap decoder contains an out-of-bounds heap write when decoding RLE planar data. In the libfreerdp/codec/planar.c file, the freerdp bitmap decompress planar function validates the X...

9.8CVSS5.9AI score0.00502EPSS
Exploits1References56
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.13 views

SUSE SLES16 Security Update : libarchive (SUSE-SU-2026:21831-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:21831-1 advisory. This update for libarchive fixes the following issues - CVE-2026-4111: logical deadlock the RAR5 filter subsystem and the...

9.8CVSS7.3AI score0.01073EPSS
Exploits0References13
ATTACKERKB
ATTACKERKB
added 2026/05/28 6:28 p.m.14 views

CVE-2026-47333

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in invalid data...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/05/28 3:43 p.m.14 views

RLSA-2026:19358 Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service due to use-after-free vulnerability...

7.3CVSS5.8AI score0.00599EPSS
Exploits7References9
Rows per page
Query Builder