Lucene search
K

760 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-28375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A testdata data-source can be used to trigger out-of-memory crashes in Grafana. CVE-2026-28375 Note that Nessus relies on the presence of the package as reporte...

6.5CVSS5.9AI score0.00376EPSS
Exploits0References3
OSV
OSV
added 2026/03/17 5:48 p.m.7 views

GHSA-97VP-PWQJ-46QC Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports

Summary A Remote OOM Out-of-Memory vulnerability exists in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an attacker-controlled 4-byte length prefix to allocate memory, with ServerMaxMessageSize allowing single...

7.1CVSS6AI score0.00298EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.12 views

EulerOS 2.0 SP12 : python3 (EulerOS-SA-2026-1407)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When building nested elements using xml.dom.minidom methods such as appendChild that have a dependency on clearidcache the algorithm is quadratic...

7.5CVSS7.3AI score0.01525EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/13 7:7 p.m.5 views

CVE-2026-30955 Gokapi vulnerable to DoS in E2E Metadata Parser

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, An API endpoint accepts unbounded request bodies without any size limit. An authenticated user can cause an OOM kill and complete service disruption for all users. This vulnerability is...

6.5CVSS5.8AI score0.00248EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/03/03 3:52 p.m.4 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.7. Security issues fixed: CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated...

9.6CVSS6AI score0.00765EPSS
Exploits1References10
OSV
OSV
added 2026/03/03 12:38 p.m.4 views

SUSE-SU-2026:0760-1 Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.7. Security issues fixed: - CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. - CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated...

10CVSS6AI score0.00765EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/02/15 12:0 a.m.8 views

openSUSE 16 Security Update : go1.25 (openSUSE-SU-2026:20214-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20214-1 advisory. Update to version 1.25.7. Security issues fixed: - CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code...

10CVSS8.2AI score0.00765EPSS
Exploits1References7
OSV
OSV
added 2026/02/13 10:8 a.m.5 views

OPENSUSE-SU-2026:20214-1 Security update for go1.25

This update for go1.25 fixes the following issues: Update to version 1.25.7. Security issues fixed: - CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. - CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated session...

10CVSS5.9AI score0.00765EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/02/11 8:32 a.m.5 views

Security update for go1.25

This update for go1.25 fixes the following issues: Update to version 1.25.7. Security issues fixed: CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated session tick...

9.6CVSS5.7AI score0.00765EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2026/02/03 7:11 p.m.3 views

CVE-2025-62600 eprosima Fast DDS affected by Out-of-Memory in readBinaryPropertySeq via Manipulated DATA Submessage when DDS Security is enabled

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS6AI score0.00412EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 5:13 p.m.4 views

CVE-2026-22259 Suricata dnp3: unbounded transaction growth

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, specially crafted traffic can cause Suricata to consume large amounts of memory while parsing DNP3 traffic. This can lead to the process slowing down and running out of memory, potentially leading to it getting...

7.5CVSS5.9AI score0.00508EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001254)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001254 advisory. The oomreaptaskmm function in mm/oomkill.c in the Linux kernel before 4.14.4 mishandles gather operations, which allows attackers to cause a denial of service TLB...

7CVSS6.7AI score0.00378EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/01/09 12:39 p.m.11 views

CVE-2023-29731

SoLive 1.6.14 thru 1.6.20 for Android has an exposed component that provides a method to modify the SharedPreference file. An attacker can leverage this method to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. When an...

7.5CVSS6.7AI score0.00781EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:38 p.m.8 views

CVE-2023-29723

The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized applications to actively request permission to insert data into the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the application is opene...

7.5CVSS6.5AI score0.00845EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/08 12:0 a.m.8 views

Amazon Linux 2023 : python3.11, python3.11-devel, python3.11-idle (ALAS2023-2025-1356)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1356 advisory. When building nested elements using xml.dom.minidom methods such as appendChild that have a dependency on clearidcache the algorithm is quadratic. Availability can be impacted when building...

7.5CVSS7.3AI score0.01525EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.7 views

CVE-2019-12129

In ONAP MSB through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

10CVSS7AI score0.01655EPSS
Exploits0References1
Amazon
Amazon
added 2026/01/07 12:0 a.m.8 views

Medium: python3.9

Issue Overview: When building nested elements using xml.dom.minidom methods such as appendChild that have a dependency on clearidcache the algorithm is quadratic. Availability can be impacted when building excessively nested documents. CVE-2025-12084 When loading a plist file, the plistlib module...

6.3CVSS6.9AI score0.00708EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/01 12:0 a.m.5 views

SUSE SLES12: libpython3_6m1_0 / libpython3_6m1_0-32bit / python36 / etc (SUSE-SU-2025:4539-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4539-1 advisory. - CVE-2025-12084: quadratic complexity when building nested elements using xml.dom.minidom methods that depend on clearidcache can lead to...

7.5CVSS7AI score0.01525EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-54030

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/net: don't overflow multishot recv Don't allow overflowing multishot recv CQEs, it might get out of hand, hurt performance, and in the worst case scenar...

5.9AI score0.00145EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-68169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netpoll: Fix deadlock in memory allocation under spinlock Fix a AA deadlock in refillskbs where memory allocation while holding skbpool-lock can trigger a...

6AI score0.00155EPSS
Exploits0References2
Rows per page
Query Builder