Lucene search
K

36 matches found

Github Security Blog
Github Security Blog
added 2026/06/12 3:4 p.m.10 views

Go-Attestation: Hash injection into trusted measurement list via unskipped SignatureHeaderSize vendor bytes in parseEfiSignatureList()

Summary parseEfiSignatureList in attest/internal/events.go does not skip SignatureHeaderSize vendor bytes before reading EFISIGNATURELIST signature entries, violating UEFI specification section 31.4.1. Impact For hashSHA256SigGUID lists, attacker-controlled vendor header bytes are appended direct...

5.5AI score
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:43 p.m.8 views

CVE-2026-8121

A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogssbiparseplmnlist in the library /lib/sbi/conv.c of the component NSSF. The manipulation leads to denial of service. The attack is possible to be carried out remotely. The exploit has been disclosed to t...

6.5CVSS4.9AI score0.00382EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 7:31 p.m.7 views

CLSA-2026-1779219098 grub2: Fix of CVE-2023-4692

CVE-2023-4692: fix OOB write when parsing NTFS $ATTRIBUTELIST entries...

7.8CVSS5.8AI score0.00536EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/17 2:15 a.m.16 views

CVE-2026-8728

A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogssbidiscoveryoptionparseplmnlist in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument target-plmn-list leads to denial of service. The attack can be executed...

5.3CVSS5.5AI score0.0039EPSS
Exploits1References6
EUVD
EUVD
added 2026/05/17 2:15 a.m.19 views

EUVD-2026-30677

A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogssbidiscoveryoptionparseplmnlist in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument target-plmn-list leads to denial of service. The attack can be executed...

5.3CVSS5.5AI score0.0039EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/05/08 12:30 a.m.7 views

CVE-2026-8121

A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogssbiparseplmnlist in the library /lib/sbi/conv.c of the component NSSF. The manipulation leads to denial of service. The attack is possible to be carried out remotely. The exploit has been disclosed to t...

5.3CVSS5.3AI score0.00382EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38605

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service can occur in the NSSF component due to the manipulation of the ogs sbi parse plmn list function located in the /lib/sbi/conv.c library. Recommendations At the moment, there...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2025/10/14 2:0 p.m.2 views

CVE-2025-22832 Buffer Overflow in NTFS when parsing the ATTRIBUTE_LIST

APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...

5.8CVSS6.6AI score0.00137EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 2:0 p.m.11 views

CVE-2025-22832 Buffer Overflow in NTFS when parsing the ATTRIBUTE_LIST

APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...

5.8CVSS0.00137EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414339)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414339 advisory. An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTRCHANNELLIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in...

7.8CVSS6.9AI score0.00335EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/21 8:12 p.m.11 views

CVE-2010-20034 Gekko Manager FTP Client <= 0.77 Stack Buffer Overflow

Gekko Manager FTP Client = 0.77 contains a stack-based buffer overflow in its FTP directory listing parser. When processing a server response to a LIST command, the client fails to properly validate the length of filenames. A crafted response containing an overly long filename can overwrite the...

8.5CVSS0.00476EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2025/08/21 8:12 p.m.6 views

CVE-2010-20034

Gekko Manager FTP Client = 0.77 contains a stack-based buffer overflow in its FTP directory listing parser. When processing a server response to a LIST command, the client fails to properly validate the length of filenames. A crafted response containing an overly long filename can overwrite the...

8.5CVSS6.4AI score0.00476EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.6 views

PT-2025-34303 · Unknown · Seagull Ftp Client

Name of the Vulnerable Software and Affected Versions: Seagull FTP Client version 3.3 build 409 Description: Seagull FTP Client contains a stack-based buffer overflow in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command...

8.5CVSS7.8AI score0.00476EPSS
Exploits0References8
CVE
CVE
added 2025/08/20 3:38 p.m.19 views

CVE-2010-10014

CVE-2010-10014 affects Odin Secure FTP prior to or equal to 4.1. A stack-based buffer overflow occurs when parsing the LIST response directory listings, where a long filename overflows a fixed-size stack buffer and can overwrite SEH, enabling remote code execution on the client. The vulnerability...

8.7CVSS8AI score0.00954EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.5 views

EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2025-1980)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...

7.5CVSS7AI score0.00729EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.4 views

EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2025-1994)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...

7.5CVSS7AI score0.00729EPSS
Exploits0References5
OSV
OSV
added 2025/04/24 1:15 p.m.7 views

CVE-2025-46420

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

6.5CVSS6.5AI score0.00487EPSS
Exploits0References12
CVE
CVE
added 2025/04/24 12:58 p.m.183 views

CVE-2025-46420

CVE-2025-46420 affects libsoup. The issue is a memory leak in soup_header_parse_quality_list() when parsing a quality list containing all-zero elements. Affects libsoup (and libsoup3) across multiple distributions; CVSS indicates MEDIUM severity (6.5) with network attack vector and user interacti...

6.5CVSS6.7AI score0.00487EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/04/24 12:58 p.m.24 views

CVE-2025-46420 Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

6.5CVSS0.00487EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/11/13 1:14 p.m.18 views

Important: Red Hat Security Advisory: Control plane Operators for RHOSO 18.0.3 (Feature Release 1) security update

Control plane Operators for RHOSO 18.0.3 Feature Release 1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

7.5CVSS6.8AI score0.01165EPSS
Exploits0References59
Rows per page
Query Builder