Lucene search
K

63129 matches found

EUVD
EUVD
added yesterday4 views

EUVD-2026-9141

Open Babel has a NULL pointer dereference in CDXML OBAtom::GetExplicitValence...

6.5CVSS5.8AI score0.00394EPSS
Exploits1References9
Cvelist
Cvelist
added yesterday8 views

CVE-2026-58369 Woodpecker < 3.15.0 - Unauthenticated NULL Pointer Dereference in /api/orgs/lookup Enables Log-Flooding Denial of Service

Woodpecker before 3.15.0 registers the /api/orgs/lookup/orgfullname endpoint without authentication middleware, and the LookupOrg handler unconditionally dereferences the session user user.ForgeID, via ForgeFromUser when selecting the forge to query. For an unauthenticated request session.User...

6.9CVSS
Exploits0References4
CVE
CVE
added yesterday7 views

CVE-2026-58369

Woodpecker

6.9CVSS5.8AI score
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added yesterday3 views

Security update for krb5 (moderate)

openSUSE security update: security update for krb5 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21021-1 Rating: moderate References: bsc1263366 bsc1263367 Cross-References: CVE-2026-40355 CVE-2026-40356 CVSS scores: CVE-2026-40355 SUSE : 5.9...

5.9CVSS5.7AI score0.00461EPSS
Exploits0References2
CVE
CVE
added 2 days ago9 views

CVE-2026-10648

CVE-2026-10648 affects Zephyr’s MCUmgr serial/console SMP transport paths. The bug occurs in mcumgr_serial_process_frag() where net_buf_reset() is invoked on the result of smp_packet_alloc() before checking NULL. smp_packet_alloc() draws from the shared MCUmgr packet pool (default 4 entries) via ...

6.2CVSS6AI score0.00114EPSS
Exploits0References2
Cvelist
Cvelist
added 2 days ago22 views

CVE-2026-10648 NULL-pointer dereference in MCUmgr serial/console SMP transport on buffer-pool exhaustion

mcumgrserialprocessfrag in subsys/mgmt/mcumgr/transport/src/serialutil.c calls netbufreset on the result of smppacketalloc before checking it for NULL. smppacketalloc uses netbufallocKNOWAIT against the shared MCUmgr packet pool CONFIGMCUMGRTRANSPORTNETBUFCOUNT, default 4, which returns NULL when...

6.2CVSS0.00114EPSS
Exploits0References2
NVD
NVD
added 2 days ago5 views

CVE-2026-56017

JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString XS.xs inspects the previous token's last byte to choose between a regexp literal and a...

7.5CVSS0.00488EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2 days ago5 views

CVE-2026-56017

JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString XS.xs inspects the previous token's last byte to choose between a regexp literal and a...

7.5CVSS5.8AI score0.00488EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-56017

JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString XS.xs inspects the previous token's last byte to choose between a regexp literal and a...

7.5CVSS5.8AI score0.00488EPSS
Exploits0References2
CVE
CVE
added 2 days ago5 views

CVE-2026-56017

JavaScript::Minifier::XS (Perl) is affected in versions before 0.16. The vulnerability arises when the first meaningful token is a slash; the JsTokenizeString logic examines the previous token and, with no valid preceding token, dereferences a NULL pointer, causing a crash. The public minify() AP...

7.5CVSS5.8AI score0.00488EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2 days ago5 views

CVE-2026-53299

A flaw was found in the Linux kernel, specifically within the airoha network driver. This vulnerability arises from an issue where a variable ndesc is initialized too early in the airohaqdmainittxqueue routine. If a queue entry list allocation fails, this premature initialization can lead to a NU...

5.8AI score0.00166EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago4 views

CVE-2026-53301

A flaw was found in the Linux kernel. Missing reset operations can lead to a null pointer dereference, which may cause system instability or a denial of service DoS. This vulnerability occurs when the system attempts to use uninitialized reset operations, resulting in an unexpected system state...

5.7AI score0.00166EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago6 views

CVE-2026-53278

A flaw was found in the Linux kernel's armmpam component. This vulnerability occurs when the destroycomponentcfg function is called from mpamdisable before the configuration array has been properly allocated. This can lead to a null pointer dereference, potentially causing a system crash and...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago6 views

CVE-2026-53289

A flaw was found in the Linux kernel's ice network driver. This vulnerability allows a local attacker to trigger a NULL pointer dereference by initiating an NVM Non-Volatile Memory firmware update while the driver is in a transitional state. This can lead to a kernel crash, resulting in a Denial ...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago6 views

CVE-2026-53318

A flaw was found in the Linux kernel's wifi subsystem, specifically within the mt76: mt7925 driver. This vulnerability arises from a missing check for a NULL pointer before it is used in the mt7925txcheckaggr function. Exploiting this flaw could lead to a system crash, causing a Denial of Service...

5.5CVSS5.8AI score0.00157EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago6 views

CVE-2026-53298

A flaw was found in the Linux kernel's airoha network driver. An issue with early initialization of the ndesc variable in the airohaqdmainitrxqueue routine can lead to a NULL pointer dereference during cleanup. This can result in a Denial of Service DoS condition. Additionally, improper ordering ...

5.8AI score0.00168EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago5 views

CVE-2026-53313

A flaw was found in the Linux kernel's drm/amd/display module. This vulnerability allows for a denial of service DoS due to a NULL pointer dereference. Specifically, the dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace functions do not correctly handle a NULL dcdmubsrv pointer before...

5.5CVSS5.7AI score0.00145EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago5 views

CVE-2026-57434

A flaw was found in Nokogiri, an open source XML and HTML library for the Ruby programming language. A remote attacker could exploit this vulnerability by calling specific methods on allocated-but-uninitialized native wrapper classes that inherit from Nokogiri::XML::Node. This could lead to a NUL...

7.5CVSS5.8AI score0.00357EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago7 views

CVE-2026-53295

A flaw was found in the Linux kernel's mailbox component. This vulnerability arises from an insufficient sanity check for the channel array. When a mailbox controller is initialized without an attached channel array, a subsequent operation can lead to a null pointer dereference, causing a kernel...

5.5CVSS5.7AI score0.00177EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago5 views

CVE-2026-53280

A flaw was found in the Linux kernel's Input-Output Memory Management Unit IOMMU component. This vulnerability occurs when a default IOMMU domain fails to allocate during the initial probe, leading to a NULL pointer dereference. This can cause a system crash, resulting in a Denial of Service DoS...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
Rows per page
Query Builder