Lucene search
K

76 matches found

NVD
NVD
added last week10 views

CVE-2026-6685

FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in fread / fwrite fp-sect - sect cc during interleaved read/write on fragmented filesystems. This maps to CWE-191 Integer Underflow. Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 6.1...

6.1CVSS0.00205EPSS
Exploits2References4
EUVD
EUVD
added 2026/07/01 1:47 p.m.6 views

EUVD-2026-40996

FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in fread / fwrite fp-sect - sect cc during interleaved read/write on fragmented filesystems. This maps to CWE-191 Integer Underflow. Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 6.1...

6.1CVSS5.8AI score0.00205EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:47 p.m.4 views

CVE-2026-6685

FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in fread / fwrite fp-sect - sect cc during interleaved read/write on fragmented filesystems. This maps to CWE-191 Integer Underflow. Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 6.1...

6.1CVSS5.8AI score0.00205EPSS
Exploits2References5
OSV
OSV
added 2026/06/16 11:48 a.m.7 views

BIT-MONGODB-2026-9740 Unbounded recursion in BSONColumn interleaved-reference causes pre-auth stack overflow

A vulnerability in MongoDB Server's BSON validation logic allows an unauthenticated user to crash the mongod process by sending a specially crafted message. The BSON validator's handling of certain nested binary data structures permits uncontrolled mutual recursion between validation functions,...

8.7CVSS5.3AI score0.00345EPSS
Exploits0References2
CVE
CVE
added 2026/06/09 10:43 p.m.129 views

CVE-2026-9740

Affected software: MongoDB Server. Vulnerability: BSON validation logic allows unauthenticated users to crash mongod via a specially crafted message. The BSON validator’s handling of certain nested binary data structures enables uncontrolled mutual recursion, where each re-entry resets internal d...

8.7CVSS5.5AI score0.00345EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/05/28 9:36 a.m.38 views

CVE-2026-46177

The CVE-2026-46177 issue affects the Linux kernel IPMI driver. It describes a vulnerability where the driver could continuously fetch events and receive messages from the BMC (or become stuck) due to the BMC not signaling completion or the attn bit getting stuck. The documented fix limits event/m...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.9 views

CVE-2026-46177

In the Linux kernel, the following vulnerability has been resolved: ipmi: Add limits to event and receive message requests The driver would just fetch events and receive messages until the BMC said it was done. To avoid issues with BMCs that never say they are done, add a limit of 10 fetches at a...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References9Affected Software1
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an error in recognizing interleaved plaintext extensions, potentially leading to out-of-bound rea...

7.1CVSS5.8AI score0.00132EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.10 views

Apache Traffic Server 安全漏洞

Apache Traffic Server ATS is a scalable HTTP proxy and caching server developed by the Apache Foundation in the United States. There are security vulnerabilities in Apache Traffic Server versions 9.2.12 and earlier, as well as 10.1.1 and earlier versions. These vulnerabilities stem from an error ...

7.5CVSS5.8AI score0.00428EPSS
Exploits0References1
OSV
OSV
added 2025/11/25 9:10 a.m.5 views

RLSA-2025:21968 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP DCM...

7.8CVSS7.2AI score0.02751EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/11/25 12:0 a.m.6 views

libpng 缓冲区错误漏洞

libpng is an open source PNG reference library from The PNG Development Group that enables the creation, reading and writing of PNG graphic files. A buffer error vulnerability exists in libpng version 1.6.0 through versions prior to 1.6.51, which stems from a heap buffer overflow in the...

7.1CVSS6.8AI score0.00224EPSS
Exploits4References7
RedhatCVE
RedhatCVE
added 2025/10/30 9:0 a.m.3 views

CVE-2025-10925

A stack-based buffer overflow vulnerability exists in the ILBM file parsing functionality of GIMP. When processing a specially crafted ILBM image file, improper validation of user-supplied data length before copying to a stack buffer can lead to memory corruption. Successful exploitation allows a...

7.8CVSS7.7AI score0.02751EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-29018

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00292EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-26408

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00337EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/09/18 11:38 p.m.3 views

SUSE CVE-2023-53383

In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes unexpected behavior in the GIC when multiple transactions are received simultaneously from different...

5.5CVSS7AI score0.00134EPSS
Exploits0References5
OSV
OSV
added 2025/09/18 2:15 p.m.8 views

AZL-72269 CVE-2023-53383 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes unexpected behavior in the GIC when multiple transactions are received simultaneously from different...

5.5CVSS5.6AI score0.00134EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/18 1:33 p.m.13 views

CVE-2023-53383 irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4

In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes unexpected behavior in the GIC when multiple transactions are received simultaneously from different...

0.00134EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/04 12:28 a.m.4 views

CVE-2025-57616

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 A use-after-free vulnerability in the writeinterleaved method allows an attacker to cause a denial of service or memory corruption. The method violates Rust's aliasing rules by modifying a data structure through a mutable pointer...

7.5CVSS7AI score0.00337EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/09/02 12:0 a.m.7 views

PT-2025-35580

Name of the Vulnerable Software and Affected Versions: rust-ffmpeg versions 0.3.0 and later after commit 5ac0527 Description: A use-after-free issue exists in the write interleaved method. This can lead to a denial of service or memory corruption. The method violates Rust's aliasing rules by...

7.5CVSS6.4AI score0.00337EPSS
Exploits1References4
CVE
CVE
added 2025/09/02 12:0 a.m.20 views

CVE-2025-57616

CVE-2025-57616 affects rust-ffmpeg 0.3.0 (after commit 5ac0527). A use-after-free in the write_interleaved function violates Rust aliasing rules by modifying a data structure through a mutable pointer while an immutable reference is held, leading to potential denial of service or memory corruptio...

7.5CVSS6.4AI score0.00337EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder