Lucene search
K

2535 matches found

ATTACKERKB
ATTACKERKB
added last week9 views

CVE-2026-42953

The application contains an out-of-bounds write vulnerability that can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution...

8.4CVSS6.2AI score0.0014EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.10 views

PT-2026-56269

Name of the Vulnerable Software and Affected Versions Labcenter Proteus version 9 Description An out-of-bounds write issue exists where an attacker can cause the program to write data beyond the end of an allocated memory buffer, potentially leading to arbitrary code execution. Recommendations...

8.4CVSS6.2AI score0.0014EPSS
Exploits0References3
Redos
Redos
added 2026/07/07 12:0 a.m.5 views

ROS-20260707-73-0014

The vulnerability of the gdiCacheToSurface function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause a service failure by sending specially crafted RDPGFX packets...

8.8CVSS7.8AI score0.00827EPSS
Exploits1
OSV
OSV
added 2026/07/02 2:13 p.m.2 views

PYSEC-2026-716 Improper Restriction of Operations within the Bounds of a Memory Buffer in OpenCV

OpenCV Open Source Computer Vision Library through 3.3 corresponding to OpenCV-Python 3.3.0.9 has a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmtbmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy...

8.8CVSS7.1AI score0.02071EPSS
Exploits0References12
OSV
OSV
added 2026/07/02 2:13 p.m.2 views

PYSEC-2026-699 Improper Restriction of Operations within the Bounds of a Memory Buffer in OpenCV

In modules/imgcodecs/src/grfmtpxm.cpp, the length of buffer AutoBuffer src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code execution or denial of service. This affects OpenCV 3.3 corresponding to OpenCV-Python 3.3.0.9 and...

8.8CVSS7.5AI score0.03066EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2026/06/30 12:0 a.m.4 views

The vulnerability of the ngx_http_charset_module module in NGINX Plus and NGINX Open Source web servers allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the ngxhttpcharsetmodule module in NGINX Plus and NGINX Open Source web servers is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information or cause...

4.8CVSS6.3AI score0.00398EPSS
Exploits0References3Affected Software11
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/29 1:4 p.m.8 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses cryptography-46.0.5-cp311-abi3-manylinux_2_34_x86_64.whl which is vulnerable to CVE-2026-34073, CVE-2026-39892

Summary IBM Maximo Application Suite - Visual Inspection component uses cryptography-46.0.5-cp311-abi3-manylinux234x8664.whl which is vulnerable to CVE-2026-34073, CVE-2026-39892, This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details...

9.8CVSS6.2AI score0.00652EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2026/06/22 4:58 p.m.37 views

CVE-2026-53540 Python-Multipart: Negative Content-Length in parse_form buffers the entire body in memory

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parseform did not validate the Content-Length header before using it to bound its chunked read of the request body. A negative Content-Length turned the bounded read into a read-until-EOF, so the entire body was loaded...

3.7CVSS0.00217EPSS
Exploits0References1
Redos
Redos
added 2026/06/22 12:0 a.m.6 views

ROS-20260622-73-0015

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.5AI score0.00375EPSS
Exploits0
Redos
Redos
added 2026/06/22 12:0 a.m.4 views

ROS-20260622-73-0028

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to reading data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS6.4AI score0.00384EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/06/22 12:0 a.m.2 views

The vulnerability affects the Audio/Video components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, allowing an attacker to execute arbitrary code.

The vulnerability of the Audio/Video components in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.7AI score0.00409EPSS
Exploits0References15Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/06/19 12:0 a.m.3 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory. This allows an attacker to execute arbitrary code or cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service interruptions...

10CVSS7.8AI score0.00424EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/06/19 12:0 a.m.4 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory. This allows an attacker to execute arbitrary code or cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service interruptions...

10CVSS7.8AI score0.00424EPSS
Exploits0References12Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/18 7:15 p.m.7 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple issues in Cryptography [CVE-2026-34073] [CVE-2026-39892]

Summary IBM Watson Speech Services Cartridge is vulnerable to Improper Certificate Validation and Improper Restriction of Operations within the Bounds of a Memory Buffer in Cryptography CVE-2026-34073 CVE-2026-39892. Cryptography is used in our speech runtimes. This vulnerabilitiy has been...

9.8CVSS5.6AI score0.00652EPSS
Exploits0Affected Software1
Redos
Redos
added 2026/06/18 12:0 a.m.7 views

ROS-20260618-73-0008

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
Redos
Redos
added 2026/06/18 12:0 a.m.9 views

ROS-20260618-73-0007

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2026/06/17 12:0 a.m.4 views

The vulnerability of the Windows NT OS Kernel component allows attackers to enhance their privileges.

The vulnerability of the Windows NT OS Kernel component involves overflow in the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.05659EPSS
Exploits1References3Affected Software21
GithubExploit
GithubExploit
added 2026/06/15 4:12 p.m.72 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Portwell Engineering_Toolkits

No d...

9.3CVSS5.2AI score0.00159EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/06/15 11:11 a.m.88 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Treck Tcp\/Ip

No d...

9.1CVSS8.6AI score0.18728EPSS
Exploits2
Redos
Redos
added 2026/06/11 12:0 a.m.9 views

ROS-20260611-73-0011

The vulnerability of the cleardecompressresidualdata function in the RDP client FreeRDP is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service failures...

9.8CVSS6.3AI score0.00434EPSS
Exploits1
Rows per page
Query Builder