Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.10 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : ngtcp2 vulnerability (USN-8300-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8300-1 advisory. Zou Dikai discovered that ngtcp2 serialized peer transport parameters into a fixed 1024-byte stack buffer without bounds checking...

7.5CVSS6AI score0.00776EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/05/20 6:43 p.m.33 views

CVE-2026-9137 CSP Report Endpoint Log Flooding in MISP via Incorrect Size Limit

The CSP report endpoint in MISP intended to limit logged CSP reports to 1 KB but incorrectly allowed reports up to 1 MB before truncation. On deployments where the endpoint is reachable by untrusted clients, this could allow attackers to generate excessive log volume and contribute to resource...

5.1CVSS0.00365EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.9 views

MISP 资源管理错误漏洞

MISP is a set of open-source software solutions developed by MISP. This product is used for collecting, storing, distributing, and sharing network security metrics. It also includes functions such as analyzing threats to network security and malware analysis. MISP has a resource management...

7.5CVSS5.8AI score0.00365EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/24 12:30 p.m.8 views

EUVD-2025-205066

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix an integer overflow in aie2queryctxstatusarray The unpublished smatch static checker reported a warning. drivers/accel/amdxdna/aie2pci.c:904 aie2queryctxstatusarray warn: potential user controlled sizeof overfl...

6.2AI score0.00152EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/29 12:0 a.m.7 views

PT-2025-48359

Name of the Vulnerable Software and Affected Versions AIS-catcher versions prior to 0.64 Description AIS-catcher is a multi-platform AIS receiver. A heap buffer overflow exists in the AIS::Message class. This allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer...

9.3CVSS7.4AI score0.00443EPSS
Exploits1References9
OSV
OSV
added 2025/05/02 4:15 p.m.3 views

DEBIAN-CVE-2023-53143

In the Linux kernel, the following vulnerability has been resolved: ext4: fix another off-by-one fsmap error on 1k block filesystems Apparently syzbot figured out that issuing this FSMAP call: struct fsmaphead cmd = .fmhcount = ...; .fmhkeys = .fmrdevice = / ext4 dev /, .fmrphysical = 0, ,...

5.5CVSS5.3AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 p.m.3 views

UBUNTU-CVE-2023-53143

In the Linux kernel, the following vulnerability has been resolved: ext4: fix another off-by-one fsmap error on 1k block filesystems Apparently syzbot figured out that issuing this FSMAP call: struct fsmaphead cmd = .fmhcount = ...; .fmhkeys = .fmrdevice = / ext4 dev /, .fmrphysical = 0, ,...

5.5CVSS6AI score0.00158EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/05/02 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a difference-in-one error in the fsmap of the ext4 filesystem at a block size of 1k...

5.5CVSS6.2AI score0.00158EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/07/20 10:22 p.m.7 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/02 7:39 p.m.5 views

grub2: Stack buffer overflow in grub_parser_split_cmdline()

A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with...

7.2CVSS6.1AI score0.00573EPSS
Exploits0References4
Rows per page
Query Builder