Lucene search
K

81 matches found

EUVD
EUVD
added 2026/06/17 5:21 p.m.9 views

EUVD-2026-37756

Integer Underflow Wrap or Wraparound vulnerability in RTI Connext Micro Core Libraries allows Overread Buffers.This issue affects Connext Micro: from 4.0.0 before 4.3.0...

8.8CVSS5.2AI score0.00276EPSS
Exploits0References1
OSV
OSV
added 2026/06/17 8:36 a.m.3 views

SUSE-SU-2026:22153-1 Security update for libheif

This update for libheif fixes the following issues Update to 1.23.0: - CVE-2025-68431: heap buffer over-read in HeifPixelImage: overlay via crafted HEIF that exercises the overlay image item bsc1255735. - CVE-2026-3949: manipulation of the argument size of a malicious frame can lead to...

8.8CVSS6.5AI score0.00514EPSS
Exploits6References46
NVD
NVD
added 2026/06/04 10:16 a.m.11 views

CVE-2026-10305

Out-of-bounds read vulnerability in Samsung Open Source rlottie allows Overread Buffers. This issue affects rlottie: before 223a2a41ba4f462e4abe767bebba49a366c9b9fd...

6.1CVSS0.00103EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 9:40 a.m.19 views

CVE-2026-10305

CVE-2026-10305 describes an out-of-bounds read in Samsung Open Source rlottie, affecting rlottie up to but not including commit 223a2a41ba4f462e4abe767bebba49a366c9b9fd. The vulnerability allows buffer overreads, with CVSSv3.1: 6.1 (MEDIUM) — LOCAL attack vector, NO privileges required, USER inte...

6.1CVSS5.8AI score0.00103EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.17 views

RockyLinux 8 : httpd:2.4 (RLSA-2026:22140)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:22140 advisory. httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase CVE-2025-53020 httpd: modproxyajp: heap-based buffer over-read and memory disclosure in...

9.8CVSS7.6AI score0.04409EPSS
Exploits1References13
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.47 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There are security vulnerabilities in the Linux kernel. These vulnerabilities stem from the fact that ksmbd does not verify the SID length of inherited ACEs in the...

8.8CVSS6AI score0.00408EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.10 views

PostgreSQL 安全漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Prior to PostgreSQL 18.4, there was a security vulnerability...

4.3CVSS6AI score0.00208EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.8 views

Fedora 43 : glibc (2026-4b7780802c)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-4b7780802c advisory. This update provides various security fixes. Buffer overflow in scanf %mc CVE-2026-5450 nssprintrrf buffer overreads CVE-2026-6238 nssprintrrf buffe...

9.8CVSS6AI score0.00451EPSS
Exploits3References6
OSV
OSV
added 2026/02/26 10:51 a.m.2 views

SUSE-SU-2026:20523-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2025-28162: memory leaks when running pngimage bsc1257364. - CVE-2025-28164: memory leaks when running pngimage bsc1257365. - CVE-2026-22695: heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: integer truncation...

8.3CVSS6AI score0.00955EPSS
Exploits4References11
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

libsoup 数字错误漏洞

Libsoup is a GNOME project’s HTTP client/server library. Libsoup has a numerical error vulnerability, which stems from integer underflow when handling zero-length resources, leading to excessive buffer reading...

9.1CVSS5.9AI score0.0042EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : libexif-0.6.21-7.el7 (AXSA:2020-162:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-162:02 advisory. libexif: several buffer over-reads in EXIF MakerNote handling can lead to information disclosure and DoS CVE-2020-13112 Tenable has extracted the preceding...

9.1CVSS5.9AI score0.02684EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : libexif-0.6.21-17.el8 (AXSA:2020-249:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-249:03 advisory. libexif: several buffer over-reads in EXIF MakerNote handling can lead to information disclosure and DoS CVE-2020-13112 Tenable has extracted the preceding...

9.1CVSS5.9AI score0.02684EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 4 : libexif-0.6.21-6.AXS4 (AXSA:2020-137:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-137:01 advisory. libexif: several buffer over-reads in EXIF MakerNote handling can lead to information disclosure and DoS CVE-2020-13112 Tenable has extracted the preceding...

9.1CVSS5.8AI score0.02684EPSS
Exploits0References2
NVD
NVD
added 2025/11/19 7:15 a.m.7 views

CVE-2025-12056

Out-of-bounds Read in Shelly Pro 3EM before v1.4.4 allows Overread Buffers...

8.3CVSS0.00172EPSS
Exploits0References2
CVE
CVE
added 2025/11/19 6:46 a.m.18 views

CVE-2025-12056

CVE-2025-12056 affects Shelly Pro 3EM (three‑phase energy meter). A specially crafted Modbus request can trigger an illegal data address read, leading to a device reboot and a denial‑of‑service. Vulnerable in versions before 1.4.4; fixed in 1.4.4+. No known public exploitation; CISA notes potenti...

8.3CVSS6.5AI score0.00172EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/19 12:0 a.m.11 views

PT-2025-47441

Out-of-bounds Read in Shelly Pro 3EM before v1.4.4 allows Overread Buffers...

8.3CVSS6.9AI score0.00172EPSS
Exploits0References2
OSV
OSV
added 2025/10/02 2:44 p.m.2 views

BIT-MONGODB-2024-10921 Improper neutralization of null bytes may lead to buffer over-reads in MongoDB Server

An authorized user may trigger crashes or receive the contents of buffer over-reads of Server memory by issuing specially crafted requests that construct malformed BSON in the MongoDB Server. This issue affects MongoDB Server v5.0 versions prior to 5.0.30 , MongoDB Server v6.0 versions prior to...

8.1CVSS7.1AI score0.00537EPSS
Exploits0References2
OSV
OSV
added 2025/09/11 11:6 a.m.3 views

SUSE-SU-2025:03164-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. - CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077. -...

8.8CVSS7.4AI score0.04065EPSS
Exploits7References16
SUSE Linux
SUSE Linux
added 2025/09/10 6:4 p.m.3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.2AI score0.04065EPSS
Exploits7References30
SUSE Linux
SUSE Linux
added 2025/06/30 7:13 a.m.2 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2025-48797: Fixed two buffer over-reads and one heap-based buffer overflow in its TGA parser bsc1243711. CVE-2025-48798: Fixed two use-after-free bugs and one double free bug in its XCF parser bsc1243712. Patch Instructions: To install this SUS...

7.3CVSS8.1AI score0.00193EPSS
Exploits0References8
Rows per page
Query Builder