Lucene search
+L

12735 matches found

EUVD
EUVD
added yesterday5 views

EUVD-2026-44685

When NGINX Plus is configured to use the Message Queuing Telemetry Transport MQTT filter module ngxstreammqttfiltermodule, unauthenticated attackers can send requests with conditions beyond the attacker's control to cause a heap buffer over-read in the NGINX worker process, leading to a restart...

6.3CVSS6.2AI score
Exploits0References1
NVD
NVD
added 2 days ago4 views

CVE-2026-57968

Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00318EPSS
Exploits0References1
NVD
NVD
added 2 days ago3 views

CVE-2026-50475

Buffer over-read in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS0.00429EPSS
Exploits0References2
NVD
NVD
added 2 days ago3 views

CVE-2026-50445

Buffer over-read in Windows RDP allows an unauthorized attacker to disclose information over a network...

6.5CVSS0.00666EPSS
Exploits0References1
NVD
NVD
added 2 days ago4 views

CVE-2026-50435

Buffer over-read in Windows Overlay Filter allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00245EPSS
Exploits0References1
NVD
NVD
added 2 days ago3 views

CVE-2026-50372

Buffer over-read in Windows Redirected Drive Buffering allows an authorized attacker to elevate privileges locally...

7CVSS0.00252EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2 days ago4 views

Windows Print Spooler Information Disclosure Vulnerability

Buffer over-read in Windows Print Spooler Components allows an authorized attacker to disclose information locally...

6.1CVSS6.1AI score0.00296EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2 days ago9 views

PT-2026-58478

Name of the Vulnerable Software and Affected Versions Remote Desktop Client affected versions not specified Description A buffer over-read exists in the Remote Desktop Client, which allows an unauthorized attacker to disclose information over a network. This issue occurs when the client connects ...

6.5CVSS6.1AI score0.00636EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago4 views

PT-2026-58423

Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description A buffer over-read in Windows RDP allows an unauthorized attacker to disclose sensitive information over a network, which can subsequently affect the system. A buffer over-read occurs whe...

6.5CVSS6.1AI score0.00666EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2 days ago6 views

Microsoft Windows Subsystem for Linux (WSL2) < 2.7.8 EoP (CVE-2026-57968) (July 2026)

The version of Microsoft Windows Subsystem for Linux WSL2 on the remote Windows host is prior to 2.7.8. It is, therefore, affected by an elevation of privilege vulnerability: - Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00318EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53877

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16. django.contrib.gis.gdal.GDALRaster over-reads its in-memory buffer when constructed fr...

6.3CVSS7AI score0.00291EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/05 10:23 p.m.10 views

CVE-2026-10657

Zephyr's DNS resolver detects mDNS .local queries in dnsresolvenameinternal subsys/net/lib/dns/resolve.c with memcmpstrrchrquery, '.', ".local", 7, which always reads a fixed 7 bytes from the suffix pointer. When the resolved hostname's final label is shorter than 7 bytes e.g. names ending in .or...

5.3CVSS6.2AI score0.00243EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/05 12:0 a.m.10 views

PT-2026-55829

Name of the Vulnerable Software and Affected Versions Zephyr versions 1.10.0 through 3.7.0 Description The DNS resolver contains a flaw in the dns resolve name internal function within subsys/net/lib/dns/resolve.c when CONFIG MDNS RESOLVER is enabled. The system uses memcmp to detect mDNS .local...

3.7CVSS6AI score0.00243EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/06/30 6:3 p.m.12 views

Low: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS5.9AI score0.02298EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/30 6:3 p.m.7 views

libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

A flaw was found in the xmllint program distributed by the libxml2 package. A buffer over-read in the xmlHTMLPrintFileContext function in the xmllint.c file may be triggered when a crafted file is processed with the xmllint program using the --htmlout command line option, causing an application...

7.5CVSS5.9AI score0.02298EPSS
Exploits1References5
EUVD
EUVD
added 2026/06/30 12:57 p.m.19 views

EUVD-2026-40315

A flaw was found in GLib. A buffer over-read can occur in giochannelreadlinebackend in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor information disclosure of 7 bytes ...

6.5CVSS5.9AI score0.00329EPSS
Exploits1References3
OSV
OSV
added 2026/06/30 12:57 p.m.4 views

CVE-2026-58013 Glib: buffer over-read in glib/giochannel.c via "g_io_channel_read_line_backend"

A flaw was found in GLib. A buffer over-read can occur in giochannelreadlinebackend in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor information disclosure of 7 bytes ...

6.5CVSS6.1AI score0.00329EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2026/06/30 12:57 p.m.7 views

CVE-2026-58012

A flaw was found in GLib. A buffer over-read can occur in the gregexreplace function when used with the GREGEXRAW compile flag and case-change replacement escapes because the stringappend function processes matched substrings using UTF-8 functions that assume valid UTF-8 input, even when the stri...

6.5CVSS5.9AI score0.00322EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/06/30 12:57 p.m.7 views

CVE-2026-58010 Glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()

A flaw was found in GLib. An off-by-one error can occur in the gvstupleisnormal function in the glib/gvariant-serialiser.c file when doing an alignment padding check because the bounds check uses instead of =, causing an out-of-bounds read of only 1 byte. This issue can cause a minor information...

6.5CVSS5.8AI score0.00322EPSS
Exploits1References3
OSV
OSV
added 2026/06/30 12:57 p.m.2 views

CVE-2026-58010 Glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()

A flaw was found in GLib. An off-by-one error can occur in the gvstupleisnormal function in the glib/gvariant-serialiser.c file when doing an alignment padding check because the bounds check uses instead of =, causing an out-of-bounds read of only 1 byte. This issue can cause a minor information...

6.5CVSS5.9AI score0.00322EPSS
Exploits1References7
Rows per page
Query Builder