Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.10 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS5.6AI score0.00228EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/10 12:30 a.m.5 views

EUVD-2026-21218

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

2.1CVSS6AI score0.00228EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/09 11:8 p.m.7 views

Buffer Over-read

Overview Affected versions of this package are vulnerable to Buffer Over-read in the MatchDomainName function during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. An attacker can cause a crash by supplying a crafted hostname that exhausts the entire string, resulting ...

5.3CVSS5.9AI score0.00228EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 p.m.6 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS0.00228EPSS
Exploits0References1
OSV
OSV
added 2026/04/09 10:16 p.m.4 views

UBUNTU-CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS6AI score0.00228EPSS
Exploits0References3
CVE
CVE
added 2026/04/09 9:50 p.m.16 views

CVE-2026-5772

The CVE-2026-5772 issue is a 1-byte stack buffer over-read in wolfSSL’s MatchDomainName (src/internal.c) when validating wildcards with LEFT_MOST_WILDCARD_ONLY; if a wildcard exhausts the hostname, one byte past the buffer is read without bounds checking, potentially crashing the process. Evidenc...

5.3CVSS6AI score0.00228EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/09 9:50 p.m.4 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS5.4AI score0.00228EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.5 views

PT-2026-31812

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A 1-byte stack buffer over-read exists in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFT MOST WILDCARD ONLY flag is active. If a wildcard exhausts the entire...

2.1CVSS6AI score0.00228EPSS
Exploits0References4
Rows per page
Query Builder