Lucene search
K

796 matches found

OSV
OSV
added 2026/05/22 2:8 a.m.17 views

GO-2026-5005 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

9.1CVSS5.8AI score0.0036EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/22 12:0 a.m.15 views

CVE-2026-39833

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

9.1CVSS5.8AI score0.0036EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.14 views

PT-2026-42712

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The in-memory keyring returned by the NewKeyring function silently accepted keys with the ConfirmBeforeUse constraint but failed to enforce it. This allowed keys...

9.1CVSS5.8AI score0.0036EPSS
Exploits0
CVE
CVE
added 2026/05/20 10:50 a.m.19 views

CVE-2026-0857

CVE-2026-0857 describes Cleartext Storage of Sensitive Information in Memory for the Mesalvo Meona Client Launcher Component (through 19.06.2020 15:11:49) and Meona Server Component (through 2025.04 5+323020). The vulnerability impacts confidentiality (HIGH) with local attack vector and no user i...

6CVSS5.8AI score0.00101EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/20 10:50 a.m.7 views

CVE-2026-0857

Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020...

6CVSS5.8AI score0.00101EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/05/19 12:0 a.m.14 views

Taking Cryptography out of the Data Path Via Near-Memory Processing in DRAM

Cryptographic algorithms such as AES-128 and SHA-256 are fundamental to ensuring data security and integrity. Although these algorithms are computationally efficient, their performance is often constrained by the processor-centric architectures e.g., CPUs, GPUs, primarily due to the memory...

5.8AI score
Exploits0
Fedora
Fedora
added 2026/05/18 1:24 a.m.20 views

[SECURITY] Fedora 42 Update: valkey-8.0.9-1.fc42

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.8CVSS5.8AI score0.02995EPSS
Exploits4
Fedora
Fedora
added 2026/05/18 12:59 a.m.24 views

[SECURITY] Fedora 43 Update: valkey-8.1.7-1.fc43

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.8CVSS5.8AI score0.02995EPSS
Exploits4
Fedora
Fedora
added 2026/05/18 12:44 a.m.18 views

[SECURITY] Fedora 44 Update: valkey-9.0.4-1.fc44

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.8CVSS5.8AI score0.02995EPSS
Exploits4
Packet Storm News
Packet Storm News
added 2026/05/18 12:0 a.m.13 views

nimrm 1.2.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/16 2:53 p.m.83 views

Operation-Molasses

🍯 OPERATION MOLASSES PEKMEZ Zencefil Efendi's Cyber Dow...

6AI score
Exploits0
CVE
CVE
added 2026/05/15 7:26 p.m.26 views

CVE-2026-44564

Open WebUI (self-hosted offline AI platform) contains a vulnerability in the ydoc:document:update Socket.IO handler that allows read-only users to modify in-memory Yjs documents. The handler validates room membership but does not verify write permission, and read-only users join the document room...

5.4CVSS5.8AI score0.0022EPSS
Exploits1References1Affected Software1
Packet Storm News
Packet Storm News
added 2026/05/15 12:0 a.m.14 views

nimrm 1.1.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score
Exploits0
Snyk
Snyk
added 2026/05/08 11:1 p.m.6 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization through the DeleteUpNodeLink process. An attacker can cause the application to crash and alter the in-memory user-plane topology by sending unauthenticated DELETE requests to the affected endpoint. Remediation...

8.8CVSS5.8AI score0.00324EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/05/06 9:50 a.m.19 views

CVE-2026-43064

A flaw was found in the Linux kernel's dmaengine IDXD driver. The workqueue associated with a Data Streaming Accelerator DSA or In-Memory Analytics Accelerator IAA device is not properly released when the object is freed. This resource leak may lead to a denial of service...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/05 5:17 p.m.6 views

CVE-2026-25243

Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate serialized values. An authenticated attacker with permission to execute RESTORE can supply a crafted serialized payload that triggers invalid memory access and may...

8.8CVSS6.2AI score0.02995EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/04 12:0 a.m.12 views

nimrc 1.0.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/03 6:21 p.m.103 views

linux-copy-fail-exploit

CVE-2026-31431 Copy Fail - LPE Exploit PoC !Pythonhttps:...

7.8CVSS6AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/02 2:31 p.m.120 views

linux-copy-fail-exploit

CVE-2026-31431 Copy Fail - LPE Exploit PoC !Pythonhttps:...

7.8CVSS6.3AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/02 8:10 a.m.90 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 "Copy Fail" Proof-of-concept exploit and analy...

7.8CVSS6.1AI score0.96267EPSS
Exploits230
Rows per page
Query Builder