Lucene search
K

38 matches found

Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.5 views

PT-2026-3286

Sandboxie 5.49.7 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the container folder input field. Attackers can paste a large buffer of repeated characters into the Sandbox container folder setting to trigger an application crash...

7.5CVSS6.9AI score0.00333EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/15 3:52 p.m.2 views

CVE-2021-47784

Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the search bar with excessive data. Attackers can generate a 9,000,000 byte payload and paste it into the search bar to trigger an application crash...

7.5CVSS5.5AI score0.00201EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/09 7:49 p.m.10 views

CVE-2025-5917 Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...

2.8CVSS4.5AI score0.00165EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.11 views

kernel: ext4: dax: fix overflowing extents beyond inode size when partially writing

An inode corruption flaw was found in the Linux kernel's Ext4 file system functionality related to how a user can interrupt a write using the daxiomaprwfunction. This flaw allows a local user to make non-fatal mistakes with Ext4, leading to a file system denial of service...

5.5CVSS6.8AI score0.00239EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-48744

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References3
CVE
CVE
added 2024/10/21 6:54 p.m.157 views

CVE-2024-50015

CVE-2024-50015 affects the Linux kernel ext4 dax path. In ext4/dax, the loop in dax_iomap_rw() can copy data after the process is signalled and then update the inode size, causing written extents to exceed the inode size (e.g., 2M vs 4M) and fsck to report inconsistencies. The referenced fixes tr...

5.5CVSS6.9AI score0.00239EPSS
Exploits0References11Affected Software1
NVD
NVD
added 2024/08/21 7:15 a.m.17 views

CVE-2023-52903

In the Linux kernel, the following vulnerability has been resolved: iouring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at iouring/iouring.c:734 iocqringeventoverflow+0x1c0/0x230 iouring/iouring.c:734 CPU: 0 PID: 28 Comm:...

5.5CVSS0.00179EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/08/21 6:10 a.m.24 views

CVE-2023-52903 io_uring: lock overflowing for IOPOLL

In the Linux kernel, the following vulnerability has been resolved: iouring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at iouring/iouring.c:734 iocqringeventoverflow+0x1c0/0x230 iouring/iouring.c:734 CPU: 0 PID: 28 Comm:...

7.2AI score0.00179EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/08/21 6:10 a.m.29 views

CVE-2023-52903 io_uring: lock overflowing for IOPOLL

In the Linux kernel, the following vulnerability has been resolved: iouring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at iouring/iouring.c:734 iocqringeventoverflow+0x1c0/0x230 iouring/iouring.c:734 CPU: 0 PID: 28 Comm:...

0.00179EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/08/21 6:10 a.m.14 views

CVE-2023-52903

In the Linux kernel, the following vulnerability has been resolved: iouring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at iouring/iouring.c:734 iocqringeventoverflow+0x1c0/0x230 iouring/iouring.c:734 CPU: 0 PID: 28 Comm:...

5.5CVSS5.4AI score0.00179EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2024/08/19 4:2 p.m.17 views

SQLx Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

The following presentation at this year's DEF CON was brought to our attention on the SQLx Discord: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to overflow,...

8.4AI score
Exploits0References4Affected Software1
OSV
OSV
added 2024/08/15 12:0 p.m.12 views

RUSTSEC-2024-0363 Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

The following presentation at this year's DEF CON was brought to our attention on the SQLx Discord: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to overflow,...

8.4AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/06/20 1:55 p.m.33 views

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

6.7CVSS9AI score0.00236EPSS
Exploits0References4
NVD
NVD
added 2024/06/20 12:15 p.m.25 views

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

7.8CVSS0.00236EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/20 11:13 a.m.37 views

CVE-2022-48744 net/mlx5e: Avoid field-overflowing memcpy()

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

0.00236EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/06/20 11:13 a.m.24 views

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

7.8CVSS6.4AI score0.00236EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/06/20 12:0 a.m.27 views

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

7.8CVSS6.4AI score0.00236EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/10/09 1:33 p.m.18 views

CVE-2023-44378 gnark vulnerable to unsoundness in variable comparison/non-unique binary decomposition

gnark is a zk-SNARK library that offers a high-level API to design circuits. Prior to version 0.9.0, for some in-circuit values, it is possible to construct two valid decomposition to bits. In addition to the canonical decomposition of a, for small values there exists a second decomposition for a...

7.1CVSS6.7AI score0.00224EPSS
Exploits0References3
OSV
OSV
added 2023/02/13 5:25 p.m.7 views

GSD-2023-1001916 cpufreq: CPPC: Add u64 casts to avoid overflowing

cpufreq: CPPC: Add u64 casts to avoid overflowing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/01/31 3:49 p.m.12 views

GSD-2023-1001786 io_uring: lock overflowing for IOPOLL

iouring: lock overflowing for IOPOLL This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.165 by commit de77faee280163ff03b7ab64af6c9d779a43d4c...

7.2AI score
Exploits0
Rows per page
Query Builder