Lucene search
K

28 matches found

RedHat Linux
RedHat Linux
added 3 days ago5 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/06/24 1:56 a.m.8 views

CVE-2026-56115

A flaw was found in dhcpcd. This vulnerability allows an unauthenticated attacker on the same network link to trigger a one-byte stack out-of-bounds write. By sending a specially crafted DHCPv6 ADVERTISE message with an oversized option, the attacker can corrupt adjacent stack memory. This can le...

8.8CVSS5.8AI score0.00307EPSS
Exploits1References5
OSV
OSV
added 2026/06/23 5:17 p.m.2 views

UBUNTU-CVE-2026-56115

Bootimus through 0.1.70 contains a broken access control vulnerability that allows authenticated low-privileged users to perform administrative actions by exploiting missing role enforcement in the JWTMiddleware function in internal/auth/auth.go, which validates JWT tokens and account status but...

8.8CVSS5.8AI score0.00307EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/20 9:31 p.m.7 views

EUVD-2026-23978

Calling the scanf family of functions with a %mc malloc'd character match in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow...

6.1AI score0.00451EPSS
Exploits1References3
NVD
NVD
added 2026/03/16 2:19 p.m.8 views

CVE-2026-28520

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. When the victim's smart hardware connects to an attacker-controlled AP hotspot, the attacker can exploit the overflow to execute arbitrary code on the affected embedded device...

8.6CVSS0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.4 views

EulerOS Virtualization 2.13.1 : libarchive (EulerOS-SA-2025-2548)

According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdta...

7.8CVSS6.7AI score0.00341EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/11/27 6:54 a.m.10 views

CVE-2025-64330

A flaw was found in Suricata. This vulnerability allows a denial of service DoS via a single byte read heap overflow when logging the verdict in eve.alert and eve.drop records, requiring the per packet alert queue to be filled with alerts followed by a pass rule...

7.5CVSS6.5AI score0.0032EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/09/04 1:14 a.m.10 views

HDF5 Scale-Offset Filter H5Z__scaleoffset_decompress_one_byte heap-based overflow

...

7.8CVSS7AI score0.00364EPSS
Exploits1
OSV
OSV
added 2025/08/20 11:55 a.m.3 views

SUSE-SU-2025:20563-1 Security update for gnutls

This update for gnutls fixes the following issues: - CVE-2025-32988: Fixed double-free due to incorrect ownership handling bsc1246232 - CVE-2025-32989: Fixed heap buffer overread during X.509 certificate parsing bsc1246233 - CVE-2025-32990: Fixed 1-byte heap buffer overflow when parsing templates...

8.2CVSS6.8AI score0.01185EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-5917

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file...

5CVSS6.4AI score0.00165EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/07/25 9:4 a.m.4 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2025-32990: Fix 1-byte heap buffer overflow when parsing templates with certtool bsc1246267 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

4.8CVSS7.2AI score0.0072EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/06/11 2:55 a.m.3 views

SUSE CVE-2025-5917

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

2.8CVSS4.8AI score0.00165EPSS
Exploits0References8
OSV
OSV
added 2025/06/09 8:15 p.m.4 views

AZL-63756 CVE-2025-5917 affecting package cmake for versions less than 3.30.3-8

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

5CVSS6.4AI score0.00165EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/06/09 8:15 p.m.4 views

CVE-2025-5917

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

5CVSS7.5AI score0.00165EPSS
Exploits0References4
OSV
OSV
added 2025/06/09 8:15 p.m.6 views

AZL-63777 CVE-2025-5917 affecting package libarchive for versions less than 3.7.7-3

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

5CVSS7.1AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 8:15 p.m.5 views

AZL-63818 CVE-2025-5917 affecting package cmake for versions less than 3.21.4-20

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

5CVSS6.4AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 8:15 p.m.6 views

AZL-63854 CVE-2025-5917 affecting package libarchive for versions less than 3.6.1-7

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

5CVSS6.4AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 1:47 p.m.4 views

CLSA-2024-1732196856 Fix CVE(s): CVE-2024-52533

SECURITY UPDATE: Buffer overflow - debian/patches/CVE-2024-52533.patch: Fix a single byte buffer overflow in connect messages in gsocks4aproxy - CVE-2024-52533...

9.8CVSS7.2AI score0.01263EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/12/24 12:0 a.m.5 views

PT-2023-31889 · Unknown · Microhttpserver

Name of the Vulnerable Software and Affected Versions: MicroHttpServer versions through a8ab029 Description: The issue allows a one-byte recv buffer overflow via a long URI in the ParseHeader function located in lib/server.c. Recommendations: For versions through a8ab029, consider restricting...

9.8CVSS9.5AI score0.00701EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:9 a.m.4 views

SUSE CVE-2019-14323

SSDP Responder 1.x through 1.5 mishandles incoming network messages, leading to a stack-based buffer overflow by 1 byte. This results in a crash of the server, but only when strict stack checking is enabled. This is caused by an off-by-one error in ssdprecv in ssdpd.c...

7.5CVSS7.7AI score0.01652EPSS
Exploits1References2
Rows per page
Query Builder