Lucene search
K

389 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in glibc

The iconv function in the GNU C Library also known as glibc or libc6 version 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially leading to a denial of service...

7.5CVSS6.9AI score0.03093EPSS
Exploits0References2
OSV
OSV
added 2026/06/12 4:45 p.m.6 views

MINI-GGQH-JP38-CP89

Bulletin has no description...

6.2CVSS4.8AI score0.00112EPSS
Exploits0
Circl
Circl
added 2026/06/10 4:57 a.m.10 views

CVE-2026-44168

creationtimestamp| type| source ---|---|--- 2026-06-10 04:57:15+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mnvwdsrfzk2z 2026-06-12 20:06:55+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mo4k43sgrd2h 2026-06-14 01:01:01+00:00| seen|...

8CVSS4.9AI score0.00469EPSS
Exploits0References4
Circl
Circl
added 2026/06/10 4:57 a.m.10 views

CVE-2026-44171

creationtimestamp| type| source ---|---|--- 2026-06-10 04:57:15+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mnvwdsrfzk2z...

7.8CVSS5.3AI score0.00135EPSS
Exploits0References1
Circl
Circl
added 2026/06/04 2:26 a.m.6 views

CVE-2026-41053

creationtimestamp| type| source ---|---|--- 2026-06-04 02:26:12+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mngl44gers2h 2026-06-30 23:17:36+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116841608371352413...

8.8CVSS5.8AI score0.0037EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/29 6:39 p.m.30 views

CVE-2026-7259

A flaw was found in PHP. When an attacker input can influence the encoding passed to mbregexencoding and the application subsequently uses mbregex search APIs, a NULL pointer dereference can occur due to a mismatch between the Oniguruma and mbfl encoding support. This issue can cause a crash in t...

6.5CVSS5.8AI score0.00202EPSS
Exploits0References4
Circl
Circl
added 2026/05/20 12:16 a.m.8 views

CVE-2026-44790

creationtimestamp| type| source ---|---|--- 2026-05-20 00:16:19+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mmamu5rnds2m 2026-06-27 10:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpbbbc4iiu2n...

9.4CVSS6AI score0.00632EPSS
Exploits0References2
Circl
Circl
added 2026/05/10 8:0 p.m.7 views

CVE-2026-41872

creationtimestamp| type| source ---|---|--- 2026-05-10 20:00:30+00:00| seen| https://jvn.jp/en/jp/JVN38632731 2026-05-11 10:54:35+00:00| seen| https://bsky.app/profile/keiwork35.bsky.social/post/3mll4cmsyhu2k 2026-05-12 09:25:00+00:00| seen|...

9.1CVSS7.1AI score0.0016EPSS
Exploits0References5
OSV
OSV
added 2026/04/29 4:51 p.m.8 views

CLSA-2026-1777481470 glibc: Fix of CVE-2021-3326

CVE-2021-3326: fix assertion failure in iconv ISO-2022-JP-3 module...

7.5CVSS6.8AI score0.03093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.10 views

CVE-2026-29078

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.7 views

OpenWrt 安全漏洞

OpenWrt is an open-source Linux operating system designed for embedded devices. Versions prior to OpenWrt 24.10.6 and 25.12.1 contained security vulnerabilities. These vulnerabilities were caused by a memory leak in the jpgettoken function, which could lead to resource exhaustion...

4.9CVSS5.8AI score0.00515EPSS
Exploits0References4
NVD
NVD
added 2026/03/13 7:54 p.m.5 views

CVE-2026-29078

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS0.00269EPSS
Exploits0References1
Snyk
Snyk
added 2026/03/13 6:44 p.m.2 views

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound through the encoding loop that fails to reset the temporary size variable between iterations in the ISO-2022-JP encoder. An attacker can corrupt stack and heap memory by providing crafted DOM tree...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 5:18 p.m.3 views

CVE-2026-29078

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/13 5:18 p.m.5 views

EUVD-2026-12051

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/13 5:18 p.m.4 views

CVE-2026-29078

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.5 views

Lexbor 缓冲区错误漏洞

Lexbor is an open-source C language library for processing HTML and CSS. Versions of Lexbor prior to 2.7.0 contained a buffer error vulnerability. This vulnerability stemmed from an integer underflow in the ISO-2022-JP encoder, which could lead to out-of-bounds reading and writing...

8.2CVSS6AI score0.00269EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23266

Guessable CAPTCHA vulnerability in jp-secure SiteGuard WP Plugin siteguard allows Functionality Bypass.This issue affects SiteGuard WP Plugin: from n/a through = 1.7.9...

5.9AI score0.00187EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.6 views

CVE-2023-40357

Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50JPV1230529', Archer A10 firmware versions prior to 'Archer A10JPV2230504', Archer AX10 firmware...

8CVSS7.3AI score0.00418EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/21 6:33 p.m.15 views

CVE-2025-5517

Heap-based Buffer Overflow vulnerability in ABB Terra AC wallbox UL40/80A, ABB Terra AC wallbox UL32A, ABB Terra AC wallbox MID/ CE -Terra AC MID, ABB Terra AC wallbox MID/ CE -Terra AC Juno CE, ABB Terra AC wallbox MID/ CE -Terra AC PTB, ABB Terra AC wallbox JP.This issue affects Terra AC wallbo...

6.8CVSS7.1AI score0.00264EPSS
Exploits0References1
Rows per page
Query Builder