Lucene search
K

214 matches found

Snyk
Snyk
added 2025/11/24 1:0 p.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the gescapeuristring function. An attacker can cause a heap-based buffer overflow by supplying a string with a very large number of characters requiring escaping, which results in an incorrect...

7.7CVSS7.3AI score0.00306EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/11/05 4:14 a.m.5 views

CVE-2025-47365

Memory corruption while processing large input data from a remote source via a communication interface...

7.8CVSS7.1AI score0.00079EPSS
Exploits0References1
NVD
NVD
added 2025/11/04 4:15 a.m.5 views

CVE-2025-47365

Memory corruption while processing large input data from a remote source via a communication interface...

7.8CVSS0.00079EPSS
Exploits0References1
CVE
CVE
added 2025/11/04 3:19 a.m.14 views

CVE-2025-47365

CVE-2025-47365 concerns a memory corruption issue in Qualcomm Chipsets/Automotive Platform caused by processing large input data received from a remote source over a communication interface. The root cause is described as an integer overflow or wraparound in the affected data handling. Impact is ...

7.8CVSS6.8AI score0.00079EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/04 3:19 a.m.9 views

CVE-2025-47365 Integer Overflow or Wraparound in Automotive Platform

Memory corruption while processing large input data from a remote source via a communication interface...

7.8CVSS0.00079EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.6 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which arises from a memory corruption when processing large input data from a communication interface from a remote source...

7.8CVSS7AI score0.00079EPSS
Exploits0References1
Snyk
Snyk
added 2025/10/30 5:10 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the Vector.ReadFrom function. An attacker can cause excessive memory allocation and application crashes by providing maliciously crafted input data containing large length fields. This can result in denial of...

8.7CVSS7AI score
Exploits0References2
Snyk
Snyk
added 2025/10/30 5:10 p.m.1 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the Vector.ReadFrom function. An attacker can cause excessive memory allocation and application crashes by providing maliciously crafted input data containing large length fields. This can result in denial of...

8.7CVSS7AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2007-1540

Malware in sbrugna...

5CVSS6.1AI score0.02428EPSS
Exploits1References19
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-19189

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00291EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-20480

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00087EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

TencentOS Server 3: lz4 (TSSA-2025:0681)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0681 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.1CVSS7.9AI score0.09116EPSS
Exploits0References2
NVD
NVD
added 2025/08/20 1:15 p.m.7 views

CVE-2025-4877

There's a vulnerability in the libssh package where when a libssh consumer passes in an unexpectedly large input buffer to sshgetfingerprinthash function. In such cases the bintobase64 function can experience an integer overflow leading to a memory under allocation, when that happens it's possibl...

4.5CVSS0.00178EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/20 12:19 p.m.16 views

CVE-2025-4877 Libssh: write beyond bounds in binary to base64 conversion functions

There's a vulnerability in the libssh package where when a libssh consumer passes in an unexpectedly large input buffer to sshgetfingerprinthash function. In such cases the bintobase64 function can experience an integer overflow leading to a memory under allocation, when that happens it's possibl...

4.5CVSS0.00178EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.6 views

libssh 缓冲区错误漏洞

libssh is a C development package from the libssh organization for accessing SSH services, which are capable of executing remote commands, file transfers, as well as providing a secure transport channel for remote programs. A buffer error vulnerability exists in libssh that stems from an integer...

4.5CVSS7.7AI score0.00178EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/07/28 11:33 p.m.5 views

SUSE CVE-2024-55605

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large input buffer to the tolowercase, touppercase, stripwhitespace, compresswhitespace, dotprefix, headerlowercase, strippseudoheaders, urldecode, or xor...

7.5CVSS7.3AI score0.0064EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/10 1:24 p.m.7 views

CVE-2025-27044

Memory corruption while executing timestamp video decode command with large input values...

7.8CVSS7.6AI score0.00087EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 12:49 p.m.28 views

CVE-2025-27044

CVE-2025-27044 : Memory corruption occurs when executing a timestamp video decode command with large input values in Qualcomm chipsets. Affected component: video decode path in Qualcomm Snapdragon/related chipsets (documented as a buffer/memory corruption vulnerability). Underlying cause: out-of-...

7.8CVSS7AI score0.00087EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2025/06/24 11:25 p.m.3 views

SUSE CVE-2025-4877

There's a vulnerability in the libssh package where when a libssh consumer passes in an unexpectedly large input buffer to sshgetfingerprinthash function. In such cases the bintobase64 function can experience an integer overflow leading to a memory under allocation, when that happens it's possibl...

4.5CVSS7.6AI score0.00178EPSS
Exploits0References11
OSV
OSV
added 2025/05/30 1:15 a.m.6 views

UBUNTU-CVE-2020-36846

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

9.8CVSS5.9AI score0.03217EPSS
Exploits0References8
Rows per page
Query Builder