Lucene search
K

26 matches found

Debian CVE
Debian CVE
added 2026/06/25 8:13 p.m.5 views

CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

8.8CVSS6AI score0.00385EPSS
Exploits0
CVE
CVE
added 2026/06/25 8:39 a.m.15 views

CVE-2026-53224

The vulnerability CVE-2026-53224 affects the Linux kernel SCTP implementation. The issue arises from insufficient validation of embedded INIT chunks and address list lengths in cookies: sctp_unpack_cookie() may accept a truncated INIT chunk, and the subsequent sctp_process_init() could read INIT ...

9.1CVSS5.7AI score0.00547EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/17 1:14 p.m.13 views

CVE-2026-10641 Out-of-bounds write in Bluetooth HFP Hands-Free CIND indicator parsing (cind_handle_values)

Zephyr's Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser subsys/bluetooth/host/classic/hfphf.c contains an out-of-bounds write. During Service Level Connection setup the HF sends AT+CIND=? and parses the AG's +CIND: response in cindhandle, which assigns a per-entry counter index a...

7.1CVSS0.00282EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/06/12 2:26 a.m.6 views

SUSE CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

5.3CVSS5.2AI score0.00495EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/10 11:33 p.m.7 views

CVE-2026-45031

A flaw was found in ImageMagick. A missing check in the PSD Photoshop Document decoder allows an attacker to bypass the list-length resource policy when processing a specially crafted PSD image. This could lead to a denial of service DoS condition by consuming excessive resources. Mitigation...

7.5CVSS5AI score0.00495EPSS
Exploits0References4
NVD
NVD
added 2026/06/10 10:16 p.m.8 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS0.00495EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/10 9:25 p.m.8 views

CVE-2026-45031 ImageMagick: Policy Bypass in PSD decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

5.3CVSS5.3AI score0.00495EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/10 9:25 p.m.10 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS5.3AI score0.00495EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/10 9:25 p.m.34 views

CVE-2026-45031 ImageMagick: Policy Bypass in PSD decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

5.3CVSS0.00495EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/10 9:25 p.m.9 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS5.3AI score0.00495EPSS
Exploits0
Snyk
Snyk
added 2026/05/18 5:53 p.m.8 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/18 5:53 p.m.9 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/18 5:53 p.m.10 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/18 5:53 p.m.12 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/18 5:53 p.m.10 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/18 5:53 p.m.7 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
OSV
OSV
added 2026/05/18 5:53 p.m.4 views

GHSA-CWPJ-H54C-XJPX ImageMagick: Policy Bypass in PSD decoder

Due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would still apply...

5.3CVSS5.8AI score0.00495EPSS
Exploits0References3
Snyk
Snyk
added 2026/05/18 5:53 p.m.11 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the PSD decoder due to a missing check for the list-length resource policy. An attacker can cause excessive resource consumption by providing a specially crafted PSD image that...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/18 5:53 p.m.15 views

ImageMagick: Policy Bypass in PSD decoder

Due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would still apply...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References3Affected Software18
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.10 views

PT-2026-41768

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description A missing check in the PSD decoder allows the list-length resource policy to be bypassed during the decoding of a PSD image. Other security limits remain active...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References128
Rows per page
Query Builder