Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

NVD
NVDadded 2026/03/17 4:16 a.m.0 views

CVE-2026-0708

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...

8.3CVSS0.00121EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2026/03/17 2:28 a.m.1 views

CVE-2026-0708 Libucl: libucl: denial of service via embedded null byte in ucl input

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...

8.3CVSS5.8AI score0.00121EPSS
Exploits1References3
CVE
CVEadded 2026/03/17 2:28 a.m.9 views

CVE-2026-0708

CVE-2026-0708 (Libucl) describes a denial-of-service in libucl caused by a crafted UCL input containing a key with an embedded null byte. This can trigger a segmentation fault in ucl_object_emit during parsing/emitting, leading to DoS on affected systems. The CVSS base score is 8.3 ( HIGH ) with ...

8.3CVSS5.8AI score0.00121EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/17 2:28 a.m.0 views

CVE-2026-0708

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...

8.3CVSS5.8AI score0.00121EPSS
Exploits1References4
CNNVD
CNNVDadded 2026/03/17 12:0 a.m.3 views

libucl 安全漏洞

Libucl is a C-language general configuration library parser developed by Vsevolod Stakhov. Libucl has a security vulnerability. This vulnerability arises from the uclobjectemit function during parsing and emitting UCL inputs containing embedded null-byte keys, which may lead to a denial-of-servic...

8.3CVSS5.8AI score0.00121EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-31332

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00019EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-28741

Malicious code in bioql PyPI...

5.5CVSS4.3AI score0.00129EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/09/26 4:30 p.m.1 views

CVE-2025-11010

A flaw was found in the libucl library. A heap-based buffer over-read can be triggered when a specially crafted configuration file is processed, causing a crash to the application linked to the library and resulting in a denial of service...

5.3CVSS6.6AI score0.00019EPSS
Exploits0References2
OSV
OSVadded 2025/09/26 11:15 a.m.0 views

CVE-2025-11010

A vulnerability has been found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclincludecommon of the file /src/uclutil.c. Such manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the...

4.8CVSS5.7AI score
Exploits0References5
NVD
NVDadded 2025/09/26 11:15 a.m.5 views

CVE-2025-11010

A vulnerability has been found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclincludecommon of the file /src/uclutil.c. Such manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the...

5.3CVSS0.00019EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/09/26 11:2 a.m.8 views

CVE-2025-11010 vstakhov libucl ucl_util.c ucl_include_common heap-based overflow

A vulnerability has been found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclincludecommon of the file /src/uclutil.c. Such manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the...

5.3CVSS0.00019EPSS
Exploits0References5
CVE
CVEadded 2025/09/26 11:2 a.m.7 views

CVE-2025-11010

CVE-2025-11010 affects vstakhov/libucl up to 0.9.2. The vulnerability lies in the function ucl_include_common in src/ucl_util.c, causing a heap-based buffer overflow. Local access is required to exploit, and public exploit details have been disclosed. Various sources confirm impact on libucl and ...

5.3CVSS6.5AI score0.00019EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/09/26 12:0 a.m.1 views

libucl 安全漏洞

libucl is a C general configuration library parser by the individual developer Vsevolod Stakhov. A security vulnerability exists in libucl 0.9.2 and earlier versions, which stems from a heap buffer overflow in the function uclincludecommon in the file /src/uclutil.c, which could lead to the...

5.3CVSS6AI score0.00019EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in libucl (npm)

The package libucl was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-25251 Malicious code in libucl (npm)

The package libucl was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/06/23 4:24 a.m.3 views

CVE-2025-6499

A flaw was found in libucl. The uclparsemultilinestring function in src/uclparser.c is vulnerable to a heap-based buffer overflow due to improper bounds checking during multiline string parsing. This flaw allows a local attacker to trigger this overflow by providing a specially crafted input file...

4.8CVSS7.3AI score0.00129EPSS
Exploits1References2
NVD
NVDadded 2025/06/23 3:15 a.m.2 views

CVE-2025-6499

A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclparsemultilinestring of the file src/uclparser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has...

5.5CVSS0.00129EPSS
Exploits1References5
OSV
OSVadded 2025/06/23 3:15 a.m.1 views

CVE-2025-6499

A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclparsemultilinestring of the file src/uclparser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has...

5.5CVSS3.9AI score
Exploits0References5
Snyk
Snykadded 2025/06/23 2:40 a.m.1 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the uclparsemultilinestring function. An attacker with local access can cause a lack of system availability by providing specially crafted input to this function during parsing operations. Remediation A fi...

5.5CVSS4.7AI score0.00129EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/06/23 2:0 a.m.2 views

CVE-2025-6499 vstakhov libucl ucl_parser.c ucl_parse_multiline_string heap-based overflow

A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function uclparsemultilinestring of the file src/uclparser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has...

4.8CVSS4.1AI score0.00129EPSS
Exploits1References5
Rows per page
Query Builder