Lucene search
K

4088 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003379)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003379 advisory. The cp2112gpiodirectioninput function in drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 does not have the expected EIO error status for a zero-lengt...

7.8CVSS7.5AI score0.00407EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.11 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002989)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002989 advisory. The tpacketrcv function in net/packet/afpacket.c in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service...

7.8CVSS7.3AI score0.00556EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001982)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001982 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...

4.7CVSS6.2AI score0.00452EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

TencentOS Server 3: binutils (TSSA-2025:0988)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0988 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.8CVSS5.8AI score0.00235EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/13 10:53 p.m.5 views

CVE-2025-15504

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...

5.5CVSS6.2AI score0.00242EPSS
Exploits1References1
CVE
CVE
added 2026/01/13 5:57 p.m.22 views

CVE-2026-20871

CVE-2026-20871 refers to a Desktop Window Manager (dwm.exe) use-after-free vulnerability that enables local privilege escalation to SYSTEM. The connected exploit report and advisories describe a DWM-related attack path (Visual‑Field Singularity) affecting the DWM compositor, with PoC/claims of in...

7.8CVSS6.7AI score0.03989EPSS
Exploits2References1Affected Software8
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.3 views

Astra Linux – Vulnerability in binutils

A vulnerability was identified in GNU Binutils 2.45. The function getlinkhashentry in the bfd/elflink.c file of the Linker component is affected by this vulnerability. This manipulation causes an out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed...

5.5CVSS5.3AI score0.00184EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.2 views

MiracleLinux 7 : libtiff-4.0.3-35.0.4.el7.AXS7 (AXSA:2025-10924:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10924:03 advisory. CVE-2025-8176: fix use after free in tools/tiffmedian.c CVE-2025-8177: fix buffer overflow in tools/thumbnail.c CVEs: CVE-2025-8176 A vulnerability...

7.8CVSS5.7AI score0.00271EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 7 : jasper-1.900.1-33.0.4.el7.AXS7 (AXSA:2025-11014:03)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-11014:03 advisory. CVE-2025-8836: fix manipulation in function jpcfloorlog2 to prevent reachable assertion CVEs: CVE-2025-8836 A vulnerability was determined in JasPe...

5.5CVSS4.2AI score0.00195EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/01/12 9:33 p.m.6 views

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/01/12 9:33 p.m.4 views

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/01/12 9:21 p.m.9 views

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2026/01/12 9:17 p.m.4 views

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

7.8CVSS6.4AI score0.00235EPSS
Exploits1References12
GithubExploit
GithubExploit
added 2026/01/12 9:3 a.m.145 views

Exploit for CVE-2025-68921

CVE-2025-68921 A local privilege escalation vulnerability e...

7.1AI score0.00324EPSS
Exploits2
Github Security Blog
Github Security Blog
added 2026/01/11 12:30 p.m.8 views

AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...

4.8CVSS6.5AI score0.00165EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2026/01/11 11:15 a.m.6 views

CVE-2025-15506

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...

4.8CVSS0.00165EPSS
Exploits0References9
OSV
OSV
added 2026/01/11 11:15 a.m.3 views

CVE-2025-15506

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...

4.8CVSS6.4AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/01/11 11:15 a.m.2 views

CVE-2025-15506

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...

4.8CVSS5.5AI score0.00165EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2026/01/11 11:2 a.m.2 views

CVE-2025-15506 AcademySoftwareFoundation OpenColorIO FileRules.cpp ConvertToRegularExpression out-of-bounds

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...

4.8CVSS6.2AI score0.00165EPSS
Exploits0References9
CVE
CVE
added 2026/01/11 11:2 a.m.18 views

CVE-2025-15506

The CVE-2025-15506 issue affects AcademySoftwareFoundation OpenColorIO (up to 2.5.0) in the ConvertToRegularExpression function within src/OpenColorIO/FileRules.cpp. The vulnerability enables an out-of-bounds read when a specific manipulation is performed, with local access required. Public explo...

4.8CVSS4.2AI score0.00165EPSS
Exploits0References9
Rows per page
Query Builder