CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Redos•added 2026/05/13 12:0 a.m.•15 views

ROS-20260513-73-0001

Vulnerability in rubygem-rack related to errors in processing input length parameters. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service...

6.5CVSS5.8AI score0.00147EPSS

Exploits0

Redos•added 2026/01/14 12:0 a.m.•6 views

ROS-20260114-7324

A vulnerability in the drivers/usb/class/cdc-acm.c component of the Linux kernel is related to errors in processing length parameters. Exploitation of the vulnerability could allow an attacker to affect data integrity...

7.8CVSS8.2AI score0.00328EPSS

Exploits1

Tenable Nessus•added 2026/01/14 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001680)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001680 advisory. st21nfcaconnectivityeventreceived in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVTTRANSACTION buffer overflows because of untrusted length...

7.8CVSS7.1AI score0.00432EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414435)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414435 advisory. st21nfcaconnectivityeventreceived in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVTTRANSACTION buffer overflows because of untrusted length...

7.8CVSS7.1AI score0.00432EPSS

Exploits0References3

Positive Technologies•added 2024/11/05 12:0 a.m.•2 views

PT-2024-8369 · NetGear · Netgear R8500

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue is related to multiple stack overflow vulnerabilities in the ipv6 fix.cgi component of the Netgear R8500 router. These vulnerabilities are caused by the lack of size checking for input da...

5.7CVSS7.4AI score0.00299EPSS

Exploits0References7

Redos•added 2024/07/30 12:0 a.m.•32 views

ROS-20240730-08

Eclipse Jetty servlet container vulnerability is related to errors in processing input data length parameters. data length parameters. Exploitation of the vulnerability could allow an attacker acting remotely to perform a "HTTP request smuggling" attack The Eclipse Jetty servlet container...

5.3CVSS7.7AI score0.01069EPSS

Exploits1

BDU FSTEC•added 2024/07/12 12:0 a.m.•4 views

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for operating systems running Windows is related to errors in processing input data length parameters. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

8.3CVSS5.4AI score0.00992EPSS

Exploits0References3

BDU FSTEC•added 2024/04/23 12:0 a.m.•3 views

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems is related to errors in processing input data length parameters. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.2CVSS7.7AI score0.00731EPSS

Exploits0References3

Github Security Blog•added 2023/04/20 2:11 p.m.•25 views

GovernorCompatibilityBravo may trim proposal calldata

Impact The proposal creation entrypoint propose in GovernorCompatibilityBravo allows the creation of proposals with a signatures array shorter than the calldatas array. This causes the additional elements of the latter to be ignored, and if the proposal succeeds the corresponding actions would...

8.8CVSS8.5AI score0.00584EPSS

Exploits0References5Affected Software2

BDU FSTEC•added 2023/02/20 12:0 a.m.•6 views

The vulnerability in the implementation of the incoming packet processing function on Cisco IOS XR operating systems of the microprogramming-based switching software for Cisco Catalyst 3650, Cisco Catalyst 3850, and Cisco Catalyst 9300 devices arises from errors in processing parameter values related to the length of incoming data. This vulnerability allows an attacker to cause service interruptions.

The vulnerability of the incoming packet processing function in Cisco IOS XR operating systems of Cisco Catalyst 3650, Cisco Catalyst 3850, and Cisco Catalyst 9300 switches is related to errors in processing input data length parameters. Exploiting this vulnerability can allow an attacker to caus...

8.6CVSS7.5AI score0.00841EPSS

Exploits0References3

Veracode•added 2022/05/14 8:54 p.m.•45 views

Buffer Overflows

linux is vulnerable to buffer overflows. st21nfcaconnectivityeventreceived in drivers/nfc/st21nfca/se.c has EVTTRANSACTION buffer overflows because of untrusted length parameters...

7.8CVSS7.7AI score0.00432EPSS

Exploits0References10Affected Software2