Lucene search
K

84 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53763

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology...

3.8CVSS6.2AI score0.00149EPSS
Exploits0References3
NVD
NVD
added 2026/06/25 9:16 p.m.8 views

CVE-2026-6678

Integer underflow in wcPKCS7DecryptOri when handling crafted Other Recipient Info, leading to incorrect length handling during decryption...

5.3CVSS0.0019EPSS
Exploits0References3
CVE
CVE
added 2026/06/25 8:16 p.m.15 views

CVE-2026-6678

CVE-2026-6678 affects wolfSSL’s wc_PKCS7_DecryptOri function. A crafted Other Recipient Info triggers an integer underflow, causing incorrect length handling during decryption. Impact is described as decryption length mismanagement; no explicit exploitation details are provided in the connected d...

5.3CVSS5.8AI score0.0019EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/06/25 8:16 p.m.7 views

CVE-2026-6678

Integer underflow in wcPKCS7DecryptOri when handling crafted Other Recipient Info, leading to incorrect length handling during decryption...

5.3CVSS5.8AI score0.0019EPSS
Exploits0
OSV
OSV
added 2026/06/23 5:8 p.m.3 views

CVE-2026-54257 Electron: Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From 42.3.1 until 42.3.3, Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow. Most apps will crash and some may perform incorrect buffer allocations in t...

9.3CVSS6.1AI score0.00253EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/06/15 8:20 p.m.6 views

NPM: Electron: Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow

NPM: Electron: Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow vulnerability discovered by ? in WordPress Npm electron versions = 42.3.1, 42.3.3...

9.3CVSS6AI score0.00253EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-46289

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations in extractkvectosg Patch series Fix bugs in...

9.8CVSS6.6AI score0.00457EPSS
Exploits0References3
CVE
CVE
added 2026/04/27 10:30 p.m.15 views

CVE-2026-7183

The CVE-2026-7183 entry affects aligungr UERANSIM (up to version 3.2.7), specifically the rls_pdu.cpp DecodeRlsMessage function in the Radio Link Simulation Layer. The issue arises from manipulation of the pduLength argument, causing an uncaught exception. Exploitability is described as remote. T...

6.9CVSS5.4AI score0.00405EPSS
Exploits0References6
CVE
CVE
added 2026/04/24 2:42 p.m.35 views

CVE-2026-31623

The CVE-2026-31623 issue affects the Linux kernel net: usb: cdc-phonet driver. A malicious USB device claiming to be a CDC Phonet modem can overflow the skb_shared_info->frags[] array by sending an unbounded sequence of full-page bulk transfers in rx_complete(). The consequence described is a ...

5.5CVSS5.3AI score0.00125EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/04/24 2:42 p.m.7 views

EUVD-2026-25516

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.3AI score0.00125EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.37 views

CVE-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete()

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

0.00125EPSS
Exploits0References9
OSV
OSV
added 2026/04/24 2:42 p.m.2 views

CVE-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete()

In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags overflow in rxcomplete A malicious USB device claiming to be a CDC Phonet modem can overflow the skbsharedinfo-frags array by sending an unbounded sequence of full-page bulk transfers. Drop the...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References12
OSV
OSV
added 2026/04/24 2:42 p.m.2 views

CVE-2026-31616 usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fphonet: fix skb frags overflow in pnrxcomplete A broken/bored/mean USB host can overflow the skbsharedinfo-frags array on a Linux gadget exposing a Phonet function by sending an unbounded sequence of full-page OUT...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.7 views

PT-2026-34975

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A malicious USB device claiming to be a CDC Phonet modem can cause an overflow of the skb shared info-frags array in the rx complete function by sending an unbounded sequence of full-pag...

9.8CVSS5AI score0.00525EPSS
Exploits1References323
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.13 views

PT-2026-34968

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the USB gadget Phonet function where a USB host can cause an overflow of the skb shared info-frags array. This occurs when the host sends an unbounded sequence of...

9.8CVSS5.3AI score0.00525EPSS
Exploits0References398
EUVD
EUVD
added 2026/04/22 9:31 a.m.7 views

EUVD-2026-24618

Integer overflow in output tensor copy size calculation in Samsung Open Source ONE could cause incorrect copy length and memory corruption for oversized tensors. Affected version is prior to commit 1.30.0...

6.6CVSS5.8AI score0.00138EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.5 views

CVE-2026-40199

Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass. packipv6 includes the sentinel byte from packipv4 when building the packed representation of IPv4 mapped addresses like ::ffff:192.168.1.1. This produces an 18 byte value instead of...

6.5CVSS5.8AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2026/04/10 10:16 p.m.4 views

CVE-2026-40199

Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass. packipv6 includes the sentinel byte from packipv4 when building the packed representation of IPv4 mapped addresses like ::ffff:192.168.1.1. This produces an 18 byte value instead of...

6.5CVSS0.00307EPSS
Exploits0References3
OSV
OSV
added 2026/04/10 10:16 p.m.5 views

UBUNTU-CVE-2026-40199

Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass. packipv6 includes the sentinel byte from packipv4 when building the packed representation of IPv4 mapped addresses like ::ffff:192.168.1.1. This produces an 18 byte value instead of...

6.5CVSS5.8AI score0.00309EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.4 views

PT-2026-32048

Name of the Vulnerable Software and Affected Versions Net::CIDR::Lite versions prior to 0.23 Description The Net::CIDR::Lite Perl module before version 0.23 does not properly validate the IPv6 group count, potentially allowing a bypass of IP Access Control Lists ACLs. Recommendations Update to...

7.5CVSS5.8AI score0.00309EPSS
Exploits0References24
Rows per page
Query Builder