CVE-2026-39832

When adding a key to a remote agent constraint extensions such as [email protected] were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all...

EUVD-2016-3595

Malware in sbrugna...

EUVD-2025-7705

Malicious code in bioql PyPI...

EUVD-2022-6957

Malicious code in bioql PyPI...

CVE-2025-26695

CVE-2025-26695 is a Thunderbird vulnerability where an incorrect padding size is used when requesting an OpenPGP key from a WKD server, enabling a network observer to learn the length of the requested email address. Affected: Thunderbird versions prior to 136 and prior to 128.8. Remediation: upgr...

CVE-2021-21952

An authentication bypass vulnerability exists in the CMDDEVICEGETRSAKEYREQUEST functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to increased privileges...

Eufy Anker Eufy Homebase 授权问题漏洞

Anker Eufy Homebase is a wireless home security camera system from Eufy U.S.A. An access control error vulnerability exists in Anker Eufy Homebase 2, which stems from the failure of the CMDDEVICEGETRSAKEYREQUEST function in the product's homesecurity file to correctly handle specially crafted...

CVE-2020-0148

In btuhcifpincoderequestevt, btuhciflinkkeyrequestevt, and btuhciflinkkeynotificationevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. Us...

Linux kernel KEYS subsystem denial of service vulnerability

The Linux Kernel is the kernel of the Linux operating system. Versions of Linux kernel prior to 4.10.13 have a denial of service vulnerability in the KEYS subsystem implementation, which can be exploited by a local attacker to cause a denial of service memory exhaustion via a series of...

CVE-2016-2419

media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as...

CVE-2016-2419

media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as...

UBUNTU-CVE-2016-2419

media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as...

XenApp / XenDesktop Buffer Overflow

n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2011.001 28-Jul-2011 Vendor: Citrix, http://www.citrix.com Affected Products: XenApp and XenDesktop Affected Version: See the Citrix security bulletin 2 for a list Vulnerability: Stack-Based Buffer Overflow in Citrix XML Service Risk:...

Information disclosure

Lantronix SCS3200 does not properly handle public-key requests, which allows remote attackers to cause a denial of service unresponsive device via unspecified keyscan requests. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...