Lucene search
K

455 matches found

OpenVAS
OpenVAS
added 2026/03/06 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2026:0800-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS5.8AI score0.0021EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

SUSE SLES15 Security Update : ocaml (SUSE-SU-2026:0800-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0800-1 advisory. - CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992. Tenable has extracted the precedin...

7.9CVSS6.1AI score0.0021EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ocaml (SUSE-SU-2026:0830-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0830-1 advisory. - CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992...

7.9CVSS6.1AI score0.0021EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/03/05 3:17 p.m.6 views

Security update for ocaml

This update for ocaml fixes the following issues: CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS6.5AI score0.0021EPSS
Exploits0References4
OSV
OSV
added 2026/03/05 3:17 p.m.4 views

SUSE-SU-2026:0830-1 Security update for ocaml

This update for ocaml fixes the following issues: - CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992...

7.9CVSS6.3AI score0.0021EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/03/04 12:33 p.m.4 views

Security update for ocaml

This update for ocaml fixes the following issues: CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS6.5AI score0.0021EPSS
Exploits0References4
OSV
OSV
added 2026/03/04 12:33 p.m.1 views

SUSE-SU-2026:0800-1 Security update for ocaml

This update for ocaml fixes the following issues: - CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992...

7.9CVSS6.5AI score0.0021EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/02 10:52 a.m.6 views

CVE-2026-28364

A flaw was found in OCaml. A remote attacker could exploit a buffer over-read vulnerability during Marshal deserialization by providing specially crafted data. This issue stems from missing bounds validation in the readblock function, which performs unbounded memory copy operations. Successful...

7.9CVSS6.3AI score0.0021EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-28364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase...

7.9CVSS6.6AI score0.0021EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/02/28 9:4 a.m.4 views

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.

...

7.9CVSS5.8AI score0.0021EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/02/28 12:24 a.m.3 views

SUSE CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.8CVSS6.6AI score0.0021EPSS
Exploits0References5
EUVD
EUVD
added 2026/02/27 6:31 a.m.7 views

EUVD-2026-8988

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.7AI score0.0021EPSS
Exploits0References3
OSV
OSV
added 2026/02/27 4:16 a.m.9 views

AZL-79502 CVE-2026-28364 affecting package ocaml 4.13.1-2

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.7AI score0.0021EPSS
Exploits0References1
OSV
OSV
added 2026/02/27 4:16 a.m.10 views

AZL-78495 CVE-2026-28364 affecting package ocaml 5.1.1-1

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.7AI score0.0021EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 4:16 a.m.6 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS0.0021EPSS
Exploits0References5
OSV
OSV
added 2026/02/27 4:16 a.m.7 views

UBUNTU-CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.6AI score0.0021EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/02/27 3:54 a.m.4 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.5AI score0.0021EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/27 3:54 a.m.4 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.7AI score0.0021EPSS
Exploits0References2
CVE
CVE
added 2026/02/27 3:54 a.m.38 views

CVE-2026-28364

CVE-2026-28364 affects OCaml runtimes prior to 4.14.3 and 5.x prior to 5.4.1. The issue is a buffer over-read in Marshal deserialization (runtime/intern.c) caused by missing bounds validation in readblock(), which uses unbounded memcpy() calls with attacker-controlled lengths from crafted Marshal...

7.9CVSS6.7AI score0.0021EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/02/27 3:54 a.m.20 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS0.0021EPSS
Exploits0References2
Rows per page
Query Builder