Lucene search
K

2211 matches found

Kaspersky
Kaspersky
added 2026/04/22 12:0 a.m.16 views

KLA91018 Memory handling vulnerability in Linux Kernel

Memory handling vulnerability was found in Linux Kernel. Malicious users can exploit this vulnerability to obtain sensitive information, cause denial of service, gain root privileges. Original advisories Information about the Copy Fail vulnerability Linux CVE announce – CVE-2026-31431 Exploitatio...

7.8CVSS6AI score0.96267EPSS
Exploits228References5
OSV
OSV
added 2026/04/20 10:29 a.m.6 views

SUSE-SU-2026:1483-1 Security update for helm

This update for helm fixes the following issues: - CVE-2025-55199: crafted JSON Schema can lead to out of memory OOM termination bsc1248093. - CVE-2026-35206: files written to unexpected directory via specially crafted Chartbsc1261938. Changes for helm: - Update to version 3.20.2...

6.5CVSS7.3AI score0.00311EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2026/04/17 1:44 p.m.6 views

Security update for openvswitch3

This update for openvswitch3 fixes the following issues: CVE-2026-34956: invalid memory access via crafted FTP payloads in userspace conntrack flows specifying the FTP alg handler bsc1261273. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.7AI score0.00405EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.13 views

Fedora 42 : stb (2026-651e3129a9)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-651e3129a9 advisory. Fix access/use of uninitialized memory in stbimage Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...

5.8AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/15 10:46 a.m.10 views

firefox: thunderbird: Uninitialized memory in the Graphics: Canvas2D component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Uninitialized memory in the Graphics: Canvas2D component...

9.1CVSS7.2AI score0.0043EPSS
Exploits0References6
CNVD
CNVD
added 2026/04/15 12:0 a.m.9 views

Adobe InDesign Desktop Memory Misreference Vulnerability

Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe InDesign Desktop, which can be exploited by an attacker to execute arbitrary code on the system...

7.8CVSS6.2AI score0.00165EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/13 10:37 a.m.2 views

firefox: thunderbird: Uninitialized memory in the Graphics: Canvas2D component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Uninitialized memory in the Graphics: Canvas2D component...

9.1CVSS7.2AI score0.0043EPSS
Exploits0References6
Redos
Redos
added 2026/04/08 12:0 a.m.6 views

ROS-20260408-73-0025

A vulnerability in the pciepfremovecfs function of the drivers/pci/endpoint/pci-epf-core.c component of the Linux kernel is related to memory utilization after it has been freed. Exploitation of the vulnerability allows an attacker to cause a denial of service...

7.8CVSS6.9AI score0.00152EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.7 views

NI LabVIEW 安全漏洞

NI LabVIEW is a graphical programming platform developed by National Instruments. Versions of NI LabVIEW prior to 2026 Q1 26.1.0 contained security vulnerabilities. These vulnerabilities stemmed from the mgcoreSH253!alignedfree function, where out-of-bounds reading of memory led to potential...

8.5CVSS6AI score0.0014EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.8 views

Google Go 安全漏洞

Google Go is a static, strongly typed, compiled, concurrent programming language with garbage collection features from the American company Google. There is a security vulnerability in Google Go, which stems from memory security issues...

9.8CVSS5.8AI score0.00605EPSS
Exploits0References1
OSV
OSV
added 2026/04/01 9:16 p.m.2 views

DEBIAN-CVE-2026-34517

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, for some multipart form fields, aiohttp read the entire field into memory before checking clientmaxsize. This issue has been patched in version 3.13.4...

5.3CVSS5.2AI score0.00384EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.6 views

PT-2026-29605

Name of the Vulnerable Software and Affected Versions AIOHTTP versions prior to 3.13.4 Description A response with an excessive number of multipart headers may be allowed to use more memory than intended, potentially leading to a denial-of-service condition. Multipart headers were not subject to...

8.7CVSS5.8AI score0.0044EPSS
Exploits0References303
CNVD
CNVD
added 2026/03/26 12:0 a.m.2 views

Google Chrome FedCM Memory Misreference Vulnerability

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in Google Chrome FedCM, which can be exploited by an attacker to execute arbitrary code on a system...

8.8CVSS6.3AI score0.00359EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/19 12:0 a.m.4 views

Quantifying Memory Cells Vulnerability for DRAM Security

Dynamic Random Access Memory DRAM is pervasive in computer systems. Cell vulnerabilities caused by unintended phenomena forced retention failure, latency alteration, rowhammer and rowpress lead to unintended bit flips in memory. These phenomena have been explored as attacks to violate data...

5.8AI score
Exploits0
Cvelist
Cvelist
added 2026/03/18 6:8 p.m.16 views

CVE-2026-31962 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most alignment records store DNA sequence and quality values, the format also allows them to omit this data in certain cases to save space. Due to...

8.8CVSS0.00361EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/03/17 4:32 p.m.5 views

Security update for xen

This update for xen fixes the following issues: CVE-2026-23554: xen: Use after free of paging structures in EPT bsc1259247, XSA-480 CVE-2026-23555: xen: Xenstored DoS by unprivileged domain bsc1259248, XSA-481 Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.2CVSS5.8AI score0.00181EPSS
Exploits0References8
CNVD
CNVD
added 2026/03/17 12:0 a.m.9 views

Google Chrome WebMIDI Memory Misreference Vulnerability

Google Chrome is a free web browser developed by Google Inc. Google Chrome WebMIDI suffers from a use-after-free vulnerability that originates from re-referencing or using freed memory, which can be exploited by remote attackers to execute arbitrary code...

8.8CVSS6.1AI score0.00271EPSS
Exploits0References1
OSV
OSV
added 2026/03/16 2:19 p.m.6 views

CVE-2026-28521

arduino-TuyaOpen before version 1.2.1 contains an out-of-bounds memory read vulnerability in the TuyaIoT component. An attacker who hijacks or controls the Tuya cloud service can issue malicious DP event data to victim devices, causing out-of-bounds memory access that may result in information...

7.7CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2026/03/16 2:19 p.m.6 views

UBUNTU-CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00773EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2026/03/15 5:58 p.m.7 views

Advisory ROSA-SA-2026-3207

software: libxslt 1.1.43 OS: ROSA-CHROME unaffected versions = libxslt-1.1.43-1 affected versions libxslt-1.1.43-1 CVE-ID: CVE-2024-55549 BDU-ID: 2025-03641 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xsltGetInheritedNsList function of the libxslt library is related to memory usage after it...

7.8CVSS6.7AI score0.00324EPSS
Exploits3
Rows per page
Query Builder