Lucene search
K

1043 matches found

CVE
CVE
added 4 days ago7 views

CVE-2026-55213

CVE-2026-55213 (h2o HTTP server) – Affected component: lib/http3/qpack.c, invoked while processing a QPACK instruction over HTTP/3. Root cause: on-stack allocation of a large buffer (up to ~800 KB) via alloca, exceeding default musl libc pthread stack size, leading to a segmentation fault when to...

7.5CVSS6.2AI score0.00343EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago34 views

CVE-2026-55213 h2o: musl libc stack overflow (QPACK)

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Prior to commit edd7a120bfc4af11ac0cbebce2a43cc1f93f9af1, when h2o processes a QPACK instruction sent from the peer over HTTP/3, lib/http3/qpack.c might allocate an on-stack buffer as large as approximately 800 KB by calling...

7.5CVSS0.00343EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/01 3:33 a.m.37 views

CVE-2026-7830 UltraVNC MS-Logon II uses 64-bit Diffie-Hellman and seeded libc rand() enabling credential interception

UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme rfbUltraVNCMsLogonIIAuth. In rfb/dh.cpp the Diffie-Hellman key exchange is performed with parameters that fit in an unsigned 64-bit integer DHMAXBITS controls the prime size. A 64-bit DH key can be brok...

7.4CVSS0.0022EPSS
Exploits0References3
CVE
CVE
added 2026/07/01 3:33 a.m.14 views

CVE-2026-44040

UltraVNC

6.5CVSS5.8AI score0.00283EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.9 views

FreeBSD : h2o -- stack overflow serving static files on musl libc (644d5e6c-1bd9-4904-8440-16c04100a2e1)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 644d5e6c-1bd9-4904-8440-16c04100a2e1 advisory. h2o project reports: When serving static files, h2o can allocate a file path on the stack using alloca...

5.5AI score0.00052EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/31 10:8 p.m.89 views

Software-Security-Exploits

Software Security: Privilege Escalation Attacks SEED Labs pro...

5.9AI score
Exploits0
Hacker One
Hacker One
added 2026/05/31 5:50 p.m.24 views

curl: curl/libcurl 8.20.0 NOPROXY bypass via uppercase-hex IPv4 aliases leaks off-proxy Basic credentials to the configured proxy

Summary: curl/libcurl 8.20.0 fails to enforce CURLOPTNOPROXY, --noproxy, and NOPROXY consistently for uppercase-hex IPv4 aliases such as 0X7f.1 on glibc-based systems that accept these legacy numeric IPv4 forms. When a canonical IP literal is excluded from proxying, curl sends the canonical form...

5.8AI score
Exploits0
FreeBSD
FreeBSD
added 2026/05/29 12:0 a.m.6 views

h2o -- stack overflow serving static files on musl libc

h2o project reports: When serving static files, h2o can allocate a file path on the stack using alloca. On systems using musl libc, a large allocation can exceed the default pthread stack size and crash the server, causing a denial of service...

5.5AI score0.00052EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in musl

The musl libc version up to 1.1.23 has an x87 floating-point stack adjustment imbalance, which is related to the math/i386/ directory. In some cases, using this library may lead to out-of-bounds writes, which are not present in an application’s source code...

9.8CVSS7.9AI score0.02726EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in musl

In musl libc through 1.2.1, wcsnrtombs mishandles certain combinations of destination buffer size and source character limit, as demonstrated by an invalid write access buffer overflow...

5.5CVSS7.3AI score0.00644EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in musl

Musl libc versions 0.9.13 through 1.2.5 before 1.2.6 have a out-of-bounds write vulnerability, which means that an attacker can trigger the iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS7.8AI score0.00347EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/19 12:0 a.m.7 views

Security update for glibc (important)

openSUSE security update: security update for glibc ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20764-1 Rating: important References: bsc1261206 bsc1262464 bsc1262465 Cross-References: CVE-2026-4046 CVE-2026-5450 CVE-2026-5928 CVSS scores:...

8.7CVSS5.9AI score0.00451EPSS
Exploits3References3
Fedora
Fedora
added 2026/05/14 12:42 a.m.40 views

[SECURITY] Fedora 43 Update: kernel-headers-7.0.6-100.fc43

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

7.8CVSS5.8AI score0.03663EPSS
Exploits11
GithubExploit
GithubExploit
added 2026/05/07 2:58 a.m.95 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 — Live Code Corruption via Page Cache A novel...

7.8CVSS6AI score0.96267EPSS
Exploits230
OSV
OSV
added 2026/05/05 5:52 p.m.8 views

CLSA-2026-1778003565 Fix CVE(s): CVE-2026-40684, CVE-2026-40685, CVE-2026-40687

SECURITY UPDATE: out-of-bounds read in DNS reverse-lookup escape decoding when running against musl libc - debian/patches/CVE-2026-40684.patch: harden stringcopydnsdomain to consume 1, 2, or 3 digits incrementally instead of indexing past the input string when fewer than 3 digits follow a backsla...

9.8CVSS6.1AI score0.00373EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 8:16 p.m.18 views

CVE-2026-41927

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains a stack-based buffer overflow vulnerability in the firewall.cgi and makeRequest.cgi binaries that allows unauthenticated attackers to overwrite the saved return address by sending a POST request with a Content-Length header exceeding 5...

8.3CVSS0.00396EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.8 views

SUSE SLES15 Security Update : glibc-livepatches (SUSE-SU-2026:1662-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:1662-1 advisory. This update for glibc-livepatches fixes the following issue: Security fixes: - CVE-2026-4046: assertion failure when converting inputs may be used to...

7.5CVSS5.8AI score0.00357EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/04/30 1:16 p.m.5 views

Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issue: Security fixes: CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application bsc1261209. Other fixes: Fix problems with livepatches targeting libc-2.31.so instead of libc.so.6 in 15.4 bsc1263035...

8.7CVSS5.2AI score0.00357EPSS
Exploits1References6
OSV
OSV
added 2026/04/30 1:16 p.m.4 views

SUSE-SU-2026:1662-1 Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issue: Security fixes: - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application bsc1261209. Other fixes: - Fix problems with livepatches targeting libc-2.31.so instead of libc.so.6 in 15.4 bsc12630...

7.5CVSS5.8AI score0.00357EPSS
Exploits1References4
GithubExploit
GithubExploit
added 2026/04/30 12:30 a.m.109 views

Exploit for CVE-2026-31431

Copy Fail Tiny ELF - CVE-2026-31431 This is a minimal 801 byt...

7.8CVSS5.2AI score0.96267EPSS
Exploits230
Rows per page
Query Builder