Lucene search
K

4 matches found

CVE
CVE
added 2026/06/22 2:59 p.m.120 views

CVE-2026-53550

js-yaml vulnerability CVE-2026-53550 stems from the merge-key handling (<<) in lib/loader.js, causing quadratic parse-time DoS when processing crafted YAML with repeated aliases prior to version 4.2.0. Affected: js-yaml

5.3CVSS5.8AI score0.00259EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2026/04/17 7:22 p.m.9 views

EUVD-2026-23496

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the external engine plugin loader concatenates a user-supplied engine name into a filesystem path without filtering path separators or .. components. An authenticated user with CREATE...

9.9CVSS6.2AI score0.00692EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.12 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-47742)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47742 advisory. - In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Mos...

7.8CVSS6.2AI score0.00286EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/06/01 7:25 a.m.2 views

RW-4040 driver installer may insecurely load Dynamic Link Libraries

Overview RW-4040 driver installer for IC Card Reader/Writer devices provided by Sharp Corporation contains an issue with the DLL search path, which may lead to insecurely load Dynamic Link Libraries CWE-427. Yuji Tounai of NTT Communications Corporation and BlackWingCat of PinkFlyingWhale reporte...

9.3CVSS6.9AI score0.01147EPSS
Exploits0References6
Rows per page
Query Builder