Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

NVD
NVDadded 2026/04/09 10:16 p.m.0 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

5.3CVSS0.00046EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/09 9:50 p.m.0 views

CVE-2026-5772

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

2.1CVSS6AI score0.00046EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/04/09 9:50 p.m.2 views

CVE-2026-5772 MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation

A 1-byte stack buffer over-read was identified in the MatchDomainName function src/internal.c during wildcard hostname validation when the LEFTMOSTWILDCARDONLY flag is active. If a wildcard exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check,...

2.1CVSS6AI score0.00046EPSS
Exploits0References1
OSV
OSVadded 2025/11/21 3:59 p.m.2 views

JLSEC-2025-209 An issue was discovered in Arm Mbed TLS before 2.24.0

An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtlsx509crlparseder has a buffer over-read of one byte...

7.5CVSS7.6AI score0.01037EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2017-12852

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.3862EPSS
Exploits0References33
OSV
OSVadded 2025/08/11 12:42 p.m.2 views

SUSE-SU-2025:01782-2 Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgrade to 16.9: - CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/16.9/...

5.9CVSS7.3AI score0.00326EPSS
Exploits0References3
F5 Networks
F5 Networksadded 2023/02/21 6:14 p.m.58 views

K21462542: OpenSSL vulnerability CVE-2017-3735

Security Advisory Description While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL since then...

5.3CVSS6.6AI score0.3862EPSS
Exploits0Affected Software17
SUSE CVE
SUSE CVEadded 2023/02/15 4:51 a.m.1 views

SUSE CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g...

5.3CVSS7.9AI score0.3862EPSS
Exploits0References29
OSV
OSVadded 2021/08/17 9:15 p.m.0 views

UBUNTU-CVE-2021-39247

Zint Barcode Generator before 2.10.0 has a one-byte buffer over-read, related to islastsingleascii in code1.c, and rsencodeuint in reedsol.c...

6.5CVSS6.8AI score0.00238EPSS
Exploits1References4
OSV
OSVadded 2021/07/19 5:15 p.m.0 views

DEBIAN-CVE-2020-36426

An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtlsx509crlparseder has a buffer over-read of one byte...

7.5CVSS7.6AI score0.01037EPSS
Exploits0References1
Amazon
Amazonadded 2018/12/05 12:0 a.m.115 views

Medium: openssl

Issue Overview: Libgcrypt allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA...

6.5CVSS6.4AI score0.3862EPSS
Exploits1
Amazon
Amazonadded 2018/11/07 12:0 a.m.70 views

Medium: openssl

Issue Overview: During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client ha...

7.5CVSS6.4AI score0.78382EPSS
Exploits1
OSV
OSVadded 2017/08/28 7:29 p.m.1 views

DEBIAN-CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g...

5.3CVSS9AI score0.3862EPSS
Exploits0References1
OSV
OSVadded 2017/08/28 7:29 p.m.1 views

ALPINE-CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g...

5.3CVSS8.9AI score0.3862EPSS
Exploits0References1
OSV
OSVadded 2017/08/28 12:0 a.m.1 views

UBUNTU-CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g...

5.3CVSS6.6AI score0.3862EPSS
Exploits0References5
Rows per page
Query Builder