Lucene search
K

2519 matches found

ATTACKERKB
ATTACKERKB
added yesterday3 views

CVE-2026-42953

The application contains an out-of-bounds write vulnerability that can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution...

8.4CVSS6.2AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added yesterday6 views

PT-2026-56269

Name of the Vulnerable Software and Affected Versions Labcenter Proteus version 9 Description An out-of-bounds write issue exists where an attacker can cause the program to write data beyond the end of an allocated memory buffer, potentially leading to arbitrary code execution. Recommendations...

8.4CVSS6.2AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/06/30 12:0 a.m.3 views

The vulnerability of the ngx_http_charset_module module in NGINX Plus and NGINX Open Source web servers allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the ngxhttpcharsetmodule module in NGINX Plus and NGINX Open Source web servers is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information or cause...

4.8CVSS6.3AI score0.00398EPSS
Exploits0References3Affected Software11
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/29 1:4 p.m.8 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses cryptography-46.0.5-cp311-abi3-manylinux_2_34_x86_64.whl which is vulnerable to CVE-2026-34073, CVE-2026-39892

Summary IBM Maximo Application Suite - Visual Inspection component uses cryptography-46.0.5-cp311-abi3-manylinux234x8664.whl which is vulnerable to CVE-2026-34073, CVE-2026-39892, This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details...

9.8CVSS6.2AI score0.00652EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2026/06/22 4:58 p.m.35 views

CVE-2026-53540 Python-Multipart: Negative Content-Length in parse_form buffers the entire body in memory

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parseform did not validate the Content-Length header before using it to bound its chunked read of the request body. A negative Content-Length turned the bounded read into a read-until-EOF, so the entire body was loaded...

3.7CVSS0.00217EPSS
Exploits0References1
Redos
Redos
added 2026/06/22 12:0 a.m.4 views

ROS-20260622-73-0028

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to reading data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS6.4AI score0.00384EPSS
Exploits0
Redos
Redos
added 2026/06/22 12:0 a.m.6 views

ROS-20260622-73-0015

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.5AI score0.00375EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: libwx: fixed a memory leak in wxsetuprxresources When wxallocpagepool fails in wxsetuprxresources, it does not release the DMA buffer. Adding dmafreecoherent in the error handling path is necessary to release the DMA buffer...

5.9AI score0.00155EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Qemu

Integer overflows and buffer overflows were identified in the ACPI Error Record Serialization Table ERST device of QEMU, within the readerstrecord and writeerstrecord functions. Both issues may allow the guest to exceed the host buffer allocated for the ERST memory device. A malicious guest could...

6.5CVSS6.8AI score0.00382EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/18 7:15 p.m.6 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple issues in Cryptography [CVE-2026-34073] [CVE-2026-39892]

Summary IBM Watson Speech Services Cartridge is vulnerable to Improper Certificate Validation and Improper Restriction of Operations within the Bounds of a Memory Buffer in Cryptography CVE-2026-34073 CVE-2026-39892. Cryptography is used in our speech runtimes. This vulnerabilitiy has been...

9.8CVSS5.6AI score0.00652EPSS
Exploits0Affected Software1
Redos
Redos
added 2026/06/18 12:0 a.m.7 views

ROS-20260618-73-0007

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
Redos
Redos
added 2026/06/18 12:0 a.m.7 views

ROS-20260618-73-0008

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/06/15 4:12 p.m.67 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Portwell Engineering_Toolkits

No d...

9.3CVSS5.2AI score0.00159EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/06/15 11:11 a.m.79 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Treck Tcp\/Ip

No d...

9.1CVSS8.6AI score0.18728EPSS
Exploits2
Redos
Redos
added 2026/06/11 12:0 a.m.7 views

ROS-20260611-73-0011

The vulnerability of the cleardecompressresidualdata function in the RDP client FreeRDP is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service failures...

9.8CVSS6.3AI score0.00434EPSS
Exploits1
Redos
Redos
added 2026/06/10 12:0 a.m.9 views

ROS-20260610-73-0026

The vulnerability in Thunderbird is related to an operation that goes beyond the buffer boundaries in memory. Exploitation of this vulnerability can be carried out remotely...

9.8CVSS5.6AI score0.00409EPSS
Exploits0
Redos
Redos
added 2026/06/10 12:0 a.m.9 views

ROS-20260610-73-0033

The vulnerability in freerdp is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

9.1CVSS5.7AI score0.00214EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:50 p.m.8 views

CVE-2026-46312

In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: Set vmaflags in vb2dmasgmmap vb2dmacontig sets VMA flags VMDONTEXPAND and VMDONTDUMP and I do not see a reason why vb2dmasg should behave differently. This avoids hitting WARNON!vma-vmflags & VMDONTEXPAND; in...

5.3AI score0.00156EPSS
Exploits0References6Affected Software1
Redos
Redos
added 2026/06/08 12:0 a.m.12 views

ROS-20260608-73-0026

The vulnerability of the Microsoft Visual Studio software development tool and the .NET software platform is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.5CVSS5.9AI score0.01553EPSS
Exploits0
Redos
Redos
added 2026/06/05 12:0 a.m.8 views

ROS-20260605-73-0073

The vulnerability in Firefox is related to the execution of operations outside the buffer in memory. The vulnerability can be exploited remotely...

9.8CVSS5.8AI score0.00409EPSS
Exploits0
Rows per page
Query Builder