Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.4 views

PT-2026-43711

An issue in fetch jpg in xdrv 10 scripter.ino in Tasmota through 15.3.0.3 allows a remote attacker to cause heap buffer overflow. The Content-Length from a JPEG stream is stored in a uint16 t variable; values above 65535 wrap around, causing allocation of a smaller buffer than the data actually...

6.2AI score0.00118EPSS
Exploits1References3
CVE
CVEadded 2026/05/27 12:0 a.m.13 views

CVE-2026-38427

CVE-2026-38427 : In Tasmota up to 15.3.0.3, fetch_jpg() in xdrv_10_scripter.ino stores the JPEG Content-Length in a uint16_t. Values > 65535 wrap around, causing allocation of a smaller heap buffer than the data read and a heap buffer overflow. This enables a remote attacker over the network t...

7.3CVSS6.2AI score0.00118EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/04/24 2:45 p.m.2 views

CVE-2026-31659

In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT response buffers batadvttpreparetvlvglobaldata builds the allocation length for a global TT response in 16-bit temporaries. When a remote originator advertises a large enough global TT, the ...

5.5AI score0.00076EPSS
Exploits0References9Affected Software1
CVE
CVEadded 2026/04/24 2:45 p.m.11 views

CVE-2026-31659

The CVE-2026-31659 issue affects the batman-adv component in the Linux kernel. batadv_tt_prepare_tvlv_global_data() computes a 16‑bit allocation length for a global TT response; if a remote originator advertises a large TT, the TT payload length plus VLAN offset can exceed 65,535 and wrap before ...

9.8CVSS5.5AI score0.00076EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCveadded 2026/04/10 12:0 a.m.1 views

CVE-2026-5188

An integer underflow issue exists in wolfSSL when parsing the Subject Alternative Name SAN extension of X.509 certificates. A malformed certificate can specify an entry length larger than the enclosing sequence, causing the internal length counter to wrap during parsing. This results in incorrect...

8.1CVSS5.8AI score0.00037EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989709)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989709 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0...

5.5CVSS6.2AI score0.00009EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:28 a.m.1 views

SUSE CVE-2018-10195

lrzsz before version 0.12.21rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a sizet to wrap around...

4.4CVSS6.7AI score0.00054EPSS
Exploits0References6
Rows per page
Query Builder