Lucene search
K

379 matches found

RedhatCVE
RedhatCVE
added 2026/05/07 9:40 a.m.15 views

CVE-2026-43861

A flaw was found in mutt, an email client. The urlpctdecode function, which is responsible for decoding URL-encoded strings, does not correctly handle null termination characters. This vulnerability could allow a remote attacker, to manipulate how URLs are processed, potentially leading to a...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/05/07 8:11 a.m.18 views

Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

...

5.3CVSS5.8AI score0.00485EPSS
Exploits0
Hacker One
Hacker One
added 2026/05/06 7:20 p.m.23 views

curl: mbedTLS private-key blob null-termination asymmetry in lib/vtls/mbedtls.c (mbed_load_privkey)

Summary: In lib/vtls/mbedtls.c, function mbedloadprivkey lines 653-738 passes raw sslkeyblob-data and sslkeyblob-len directly to mbedtlspkparsekey at lines 706-708 mbedTLS 4.x branch and 718-722 mbedTLS 3.x branch, without ensuring null-termination. The mbedTLS API contract for mbedtlspkparsekey...

5.7AI score
Exploits0
OSV
OSV
added 2026/05/05 8:39 a.m.6 views

BIT-APACHE-2026-34032 Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.12 views

SUSE CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

8.2CVSS5.8AI score0.00485EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2026/05/05 12:0 a.m.9 views

CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References2
OSV
OSV
added 2026/05/05 12:0 a.m.7 views

UBUNTU-CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References3
NVD
NVD
added 2026/05/04 2:16 p.m.21 views

CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS0.00485EPSS
Exploits0References2
OSV
OSV
added 2026/05/04 2:16 p.m.10 views

DEBIAN-CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References1
OSV
OSV
added 2026/05/04 2:16 p.m.7 views

ALPINE-CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References1
CVE
CVE
added 2026/05/04 12:54 p.m.176 views

CVE-2026-34032

CVE-2026-34032 is a vulnerability in Apache HTTP Server up to version 2.4.66, caused by a missing null-termination check in mod_proxy_ajp (ajp_msg_get_string) that leads to a heap buffer over-read. Affected product: Apache HTTP Server; vulnerable component: mod_proxy_ajp; root cause: missing null...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/04 12:54 p.m.5 views

CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/04 12:54 p.m.5 views

CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/04 12:54 p.m.8 views

CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00485EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/04 12:54 p.m.6 views

CVE-2026-34032 Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.8AI score0.00485EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 12:54 p.m.113 views

CVE-2026-34032 Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

0.00485EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/01 5:25 p.m.5 views

CVE-2026-43028

A flaw was found in the Linux kernel's netfilter xtables component. This vulnerability arises from the system's failure to ensure that certain names are properly ended with a null character before being used by functions designed for standard text strings. This oversight could lead to incorrect...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013773)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013773 advisory. In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of...

5.7AI score0.00187EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.10 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013490)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013490 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy for BIOS version The strlcat with FORTIFY support is triggering a panic...

5.5CVSS6.6AI score0.00167EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006923)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006923 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds Fix a...

5.5CVSS6AI score0.00146EPSS
Exploits0References4
Rows per page
Query Builder