Lucene search
K

785 matches found

CNNVD
CNNVD
added 2026/02/25 12:0 a.m.10 views

pypdf 安全漏洞

pypdf is an open-source, free Python library for handling PDF files. It allows for splitting, merging, cropping, and converting pages within PDF files. Prior to version 6.7.2, pypdf had a security vulnerability due to a flaw in handling specially crafted PDF files, which could lead to infinite...

7.5CVSS7.3AI score0.00346EPSS
Exploits0References3
Snyk
Snyk
added 2026/02/24 12:19 a.m.7 views

Expected Behavior Violation

Overview Affected versions of this package are vulnerable to Expected Behavior Violation via the PFCP Association Setup Request process. An attacker can cause service disruption and trigger reconnection loops by sending a malformed request that is incorrectly accepted, resulting in an inconsisten...

7.5CVSS5.8AI score0.00355EPSS
Exploits1References2
Snyk
Snyk
added 2026/02/24 12:19 a.m.6 views

Expected Behavior Violation

Overview Affected versions of this package are vulnerable to Expected Behavior Violation via the PFCP Association Setup Request process. An attacker can cause service disruption and trigger reconnection loops by sending a malformed request that is incorrectly accepted, resulting in an inconsisten...

7.5CVSS6AI score0.00355EPSS
Exploits1References2
Snyk
Snyk
added 2026/02/24 12:19 a.m.5 views

Expected Behavior Violation

Overview Affected versions of this package are vulnerable to Expected Behavior Violation via the PFCP Association Setup Request process. An attacker can cause service disruption and trigger reconnection loops by sending a malformed request that is incorrectly accepted, resulting in an inconsisten...

7.5CVSS6AI score0.00355EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.10 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities. These vulnerabilities stemmed from the continu...

7.5CVSS6.9AI score0.00327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/21 1:30 a.m.7 views

CVE-2026-27014

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, circular NextOffset chains cause an infinite loop, and deeply nested directories cause unbounded recursion stack overflow in the ROMFS archive parser. Version 6.0.1630.0 patches the issue...

5.5CVSS5.5AI score0.00152EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/20 5:0 a.m.4 views

CVE-2026-2739

This affects versions of the package bn.js before 5.2.3. Calling maskn0 on any BN instance corrupts the internal state, causing toString, divmod, and other methods to enter an infinite loop, hanging the process indefinitely...

6.9CVSS5.5AI score0.00467EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.8 views

pypdf 安全漏洞

pypdf is an open-source, free Python library for handling PDF files. It allows for splitting, merging, cropping, and converting pages within PDF files. Versions of pypdf prior to 6.7.1 contained security vulnerabilities; these vulnerabilities stemmed from accessing child items of the TreeObject...

6.9CVSS5.8AI score0.00168EPSS
Exploits0References4
NVD
NVD
added 2026/02/19 9:18 p.m.9 views

CVE-2026-27014

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, circular NextOffset chains cause an infinite loop, and deeply nested directories cause unbounded recursion stack overflow in the ROMFS archive parser. Version 6.0.1630.0 patches the issue...

5.5CVSS0.00152EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.11 views

NanaZip 安全漏洞

NanaZip is a compression software open source by the M2-Team. Versions of NanaZip from 5.0.1252.0 to 6.0.1630.0 contained security vulnerabilities. These vulnerabilities were caused by the NextOffset loop and deeply nested directories within the ROMFS archive parser, which could lead to infinite...

5.5CVSS5.8AI score0.00152EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.7 views

PT-2026-20928

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, circular NextOffset chains cause an infinite loop, and deeply nested directories cause unbounded recursion stack overflow in the ROMFS archive parser. Version 6.0.1630.0 patches the issue...

5.1CVSS5.5AI score0.00152EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.11 views

NanaZip 安全漏洞

NanaZip is a compression software open source by the M2-Team. Versions of NanaZip from 5.0.1252.0 to 6.0.1630.0 contained security vulnerabilities, which were caused by infinite loops in the ROMFS archive parser...

7.5CVSS5.8AI score0.00267EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from resetting nextsmb2rcvhdroff in an incorrect path, potentially leading to infinite loops...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD...

7.5CVSS7.1AI score0.0028EPSS
Exploits0References3
OSV
OSV
added 2026/02/14 3:22 p.m.7 views

CVE-2026-23136 libceph: reset sparse-read state in osd_fault()

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

7.5CVSS5.2AI score0.0028EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the IOWQBITEXIT flag is not checked within the work loop in the iouring and io-wq...

5.5CVSS6AI score0.00115EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper boundary checking during the truncation of large swap entries, potentially leading to...

5.8AI score0.00166EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper state handling in the i2c-imx driver. This vulnerability could lead to infinite loops an...

5.5CVSS6.1AI score0.001EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.7 views

eProsima Fast DDS 安全漏洞

eProsima Fast DDS is a C++ implementation of the OMG Object Management Group DDS Data Distribution Service standard from eProsima Corporation. Versions prior to 3.4.1, 3.3.1, and 2.6.11 of eProsima Fast DDS contained security vulnerabilities. These vulnerabilities stemmed from infinite loops duri...

7.5CVSS5.8AI score0.0054EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: fixed integer types and null check locations Reason: Issues fixed: - Comparison with a wider integer type in the loop condition, which could lead to infinite loops. - Dereferencing a pointer before performing ...

5.5CVSS6.2AI score0.00241EPSS
Exploits0References3
Rows per page
Query Builder