Lucene search
+L

456 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/27 3:54 a.m.9 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.5AI score0.0021EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/27 3:54 a.m.8 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.6AI score0.0021EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/02/27 3:54 a.m.6 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.7AI score0.0021EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/27 3:54 a.m.5 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.5AI score0.0021EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/27 12:0 a.m.9 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.6AI score0.0021EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.10 views

OCaml Security Advisory Database 安全漏洞

The OCaml Security Advisory Database is a security database developed under the open-source OCaml language. Versions prior to 4.14.3 and 5.x versions before 5.4.1 of the OCaml Security Advisory Database contain security vulnerabilities. These vulnerabilities stem from excessive buffer reading...

7.9CVSS6.2AI score0.0021EPSS
Exploits0References3
OSV
OSV
added 2026/02/17 1:30 p.m.8 views

OSEC-2026-01 Buffer Over-Read in OCaml Marshal Deserialization

Summary A critical buffer over-read vulnerability in OCaml's Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operations usin...

6.8CVSS6.8AI score0.0021EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.6 views

PT-2026-22292

Name of the Vulnerable Software and Affected Versions OCaml versions prior to 4.14.3 and 5.x versions prior to 5.4.1 Description A flaw exists in OCaml's Marshal deserialization process within runtime/intern.c that could allow for remote code execution. This issue stems from a missing bounds chec...

7.9CVSS6.1AI score0.0021EPSS
Exploits0References38
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.7 views

MiracleLinux 4 : hivex-1.3.3-4.3.AXS4 (AXSA:2015-405:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-405:01 advisory. Hive files are the undocumented binary blobs that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these file...

4.6CVSS5.7AI score0.00625EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

MiracleLinux 4 : ocaml-3.11.2-5.AXS4 (AXSA:2017-1539:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1539:01 advisory. Objective Caml is a high-level, strongly-typed, functional and object-oriented programming language from the ML family of languages. This package comprises t...

9.1CVSS8.4AI score0.05267EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : ocaml-4.01.0-22.7.el7 (AXSA:2016-530:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-530:01 advisory. Security issues fixed with this release: CVE-2015-8869 OCamel before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct...

9.1CVSS8.4AI score0.05267EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:52 a.m.7 views

CVE-2022-42324

Oxenstored 32-31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed precision. The Ocaml Xenbus library takes a C uint32t out of the ring and casts it directly to an Ocaml integer. In 64-bit Ocaml builds this is fine, but in 32-bit builds, it truncates off the most...

5.5CVSS6.7AI score0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4252

Malware in sbrugna...

4.6CVSS6AI score0.00429EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2013-4293

Malware in sbrugna...

5.2CVSS8.5AI score0.0055EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-21853

Malware in sbrugna...

5.5CVSS5.3AI score0.004EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.23 views

EUVD-2018-21432

Malware in sbrugna...

9.8CVSS9.2AI score0.04216EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-8679

Malware in sbrugna...

8.8CVSS8.7AI score0.0122EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-21847

Malware in sbrugna...

8.8CVSS8.6AI score0.00304EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-8725

Malware in sbrugna...

9.1CVSS9AI score0.05267EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2012-3469

Malware in sbrugna...

5CVSS6.1AI score0.01497EPSS
Exploits0References7
Rows per page
Query Builder