36 matches found
Go-Attestation: Hash injection into trusted measurement list via unskipped SignatureHeaderSize vendor bytes in parseEfiSignatureList()
Summary parseEfiSignatureList in attest/internal/events.go does not skip SignatureHeaderSize vendor bytes before reading EFISIGNATURELIST signature entries, violating UEFI specification section 31.4.1. Impact For hashSHA256SigGUID lists, attacker-controlled vendor header bytes are appended direct...
CVE-2026-8121
A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogssbiparseplmnlist in the library /lib/sbi/conv.c of the component NSSF. The manipulation leads to denial of service. The attack is possible to be carried out remotely. The exploit has been disclosed to t...
CLSA-2026-1779219098 grub2: Fix of CVE-2023-4692
CVE-2023-4692: fix OOB write when parsing NTFS $ATTRIBUTELIST entries...
CVE-2026-8728
A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogssbidiscoveryoptionparseplmnlist in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument target-plmn-list leads to denial of service. The attack can be executed...
EUVD-2026-30677
A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogssbidiscoveryoptionparseplmnlist in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument target-plmn-list leads to denial of service. The attack can be executed...
CVE-2026-8121
A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogssbiparseplmnlist in the library /lib/sbi/conv.c of the component NSSF. The manipulation leads to denial of service. The attack is possible to be carried out remotely. The exploit has been disclosed to t...
PT-2026-38605
Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service can occur in the NSSF component due to the manipulation of the ogs sbi parse plmn list function located in the /lib/sbi/conv.c library. Recommendations At the moment, there...
CVE-2025-22832 Buffer Overflow in NTFS when parsing the ATTRIBUTE_LIST
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...
CVE-2025-22832 Buffer Overflow in NTFS when parsing the ATTRIBUTE_LIST
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414339)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414339 advisory. An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTRCHANNELLIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in...
CVE-2010-20034 Gekko Manager FTP Client <= 0.77 Stack Buffer Overflow
Gekko Manager FTP Client = 0.77 contains a stack-based buffer overflow in its FTP directory listing parser. When processing a server response to a LIST command, the client fails to properly validate the length of filenames. A crafted response containing an overly long filename can overwrite the...
CVE-2010-20034
Gekko Manager FTP Client = 0.77 contains a stack-based buffer overflow in its FTP directory listing parser. When processing a server response to a LIST command, the client fails to properly validate the length of filenames. A crafted response containing an overly long filename can overwrite the...
PT-2025-34303 · Unknown · Seagull Ftp Client
Name of the Vulnerable Software and Affected Versions: Seagull FTP Client version 3.3 build 409 Description: Seagull FTP Client contains a stack-based buffer overflow in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command...
CVE-2010-10014
CVE-2010-10014 affects Odin Secure FTP prior to or equal to 4.1. A stack-based buffer overflow occurs when parsing the LIST response directory listings, where a long filename overflows a fixed-size stack buffer and can overwrite SEH, enabling remote code execution on the client. The vulnerability...
EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2025-1980)
According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...
EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2025-1994)
According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...
CVE-2025-46420
A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...
CVE-2025-46420
CVE-2025-46420 affects libsoup. The issue is a memory leak in soup_header_parse_quality_list() when parsing a quality list containing all-zero elements. Affects libsoup (and libsoup3) across multiple distributions; CVSS indicates MEDIUM severity (6.5) with network attack vector and user interacti...
CVE-2025-46420 Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c
A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...
Important: Red Hat Security Advisory: Control plane Operators for RHOSO 18.0.3 (Feature Release 1) security update
Control plane Operators for RHOSO 18.0.3 Feature Release 1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...