Lucene search
K

14782 matches found

AlpineLinux
AlpineLinux
added 2026/03/13 8:38 p.m.4 views

CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00431EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/03/13 8:38 p.m.4 views

CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS8.4AI score0.00431EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.7 views

GStreamer 缓冲区错误漏洞

GStreamer is a set of open-source frameworks for processing streaming media. GStreamer has a buffer error vulnerability, which stems from a lack of validation of data provided to users during the processing of video packets. This vulnerability may lead to out-of-bounds writing and remote code...

7.8CVSS7.6AI score0.00431EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/11 6:30 p.m.4 views

EUVD-2026-11219

A vulnerability in the Intermediate System-to-Intermediate System IS-IS multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly. This vulnerability is due to insufficient input validation of ingre...

7.4CVSS5.8AI score0.0016EPSS
Exploits0References2
NVD
NVD
added 2026/03/11 5:16 p.m.8 views

CVE-2026-20074

A vulnerability in the Intermediate System-to-Intermediate System IS-IS multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly. This vulnerability is due to insufficient input validation of ingre...

7.4CVSS0.0016EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 4:31 p.m.58 views

CVE-2026-20074

The CVE concerns Cisco IOS XR Software’s IS-IS multi-instance routing feature. An unauthenticated, Layer-2 adjacent attacker can trigger the IS-IS process to restart by sending crafted ingress IS-IS packets after forming an adjacency, due to insufficient input validation. The resulting impact is ...

7.4CVSS5.8AI score0.0016EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 4:31 p.m.5 views

CVE-2026-20074

A vulnerability in the Intermediate System-to-Intermediate System IS-IS multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly. This vulnerability is due to insufficient input validation of ingre...

7.4CVSS5.8AI score0.0016EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 4:31 p.m.6 views

CVE-2026-20074 Cisco IOS XR Software Multi-Instance Intermediate System-to-Intermediate System Denial of Service Vulnerability

A vulnerability in the Intermediate System-to-Intermediate System IS-IS multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly. This vulnerability is due to insufficient input validation of ingre...

7.4CVSS5.8AI score0.0016EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/03/11 12:55 a.m.2 views

kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service

A flaw was found in the ALSA USB audio driver of the Linux kernel. This vulnerability, a buffer overflow, occurs when the size of the Pulse-Code Modulation PCM stream data packets exceeds the maximum allowed by the USB descriptor. A local attacker could exploit this by providing specially crafted...

6.1AI score0.00214EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2026/03/11 12:0 a.m.109 views

📄 BuptLab DNS Relay Server 1.0 Buffer Underflow

This is a proof of concept exploit that leverages a remote heap buffer underflow denial of service vulnerability in BuptLab DNS Relay Server version 1.0.0 that was recently discovered by Antonius...

6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31812

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a...

8.7CVSS7.3AI score0.005EPSS
Exploits0References4
NVD
NVD
added 2026/03/10 10:16 p.m.3 views

CVE-2026-31812

Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable quinn versions by sending a crafted QUIC Initial packet containing malformed...

8.7CVSS0.005EPSS
Exploits0References8
OSV
OSV
added 2026/03/10 10:16 p.m.2 views

UBUNTU-CVE-2026-31812

Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable quinn versions by sending a crafted QUIC Initial packet containing malformed...

8.7CVSS5.8AI score0.005EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/10 9:4 p.m.6 views

CVE-2026-31812

Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable quinn versions by sending a crafted QUIC Initial packet containing malformed...

8.7CVSS5.3AI score0.005EPSS
Exploits0
EUVD
EUVD
added 2026/03/10 6:31 p.m.5 views

EUVD-2025-208463

Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric CNC M800V Series M800VW and M800VS, M80V Series M80V and M80VW, M800 Series M800W and M800S, M80 Series M80 and M80W, E80 Series E80, C80 Series C80, M700V Series M750VW, M720VW, 730VW, M720V...

5.9CVSS5.8AI score0.00614EPSS
Exploits0References3
CVE
CVE
added 2026/03/10 4:44 p.m.15 views

CVE-2026-22627

CVE-2026-22627 affects Fortinet FortiSwitch AX Fixed 1.0.0 through 1.0.1. The vulnerability is a buffer copy without input size checking in LLDP packet handling, enabling an unauthenticated attacker on the same adjacent network to run arbitrary code or commands on the device. Impact per the entry...

8.8CVSS6.1AI score0.00286EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/03/10 4:40 a.m.12 views

CVE-2025-2399

CVE-2025-2399 describes an improper validation of specified index, position, or offset in input on Mitsubishi Electric CNC products, including M800V/M800VW/M800VS, M80V/M80VW, M800/M800W/M800S, M80/M80W, E80, C80, M700V family (M750VW, M720VW, 730VW, M720VS, 730VS, M750VS), M70V family (M70V), E7...

5.9CVSS5.8AI score0.00614EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/10 4:40 a.m.4 views

CVE-2025-2399 Denial of Service (DoS) Vulnerability in Mitsubishi Electric CNC Series

Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric CNC M800V Series M800VW and M800VS, M80V Series M80V and M80VW, M800 Series M800W and M800S, M80 Series M80 and M80W, E80 Series E80, C80 Series C80, M700V Series M750VW, M720VW, 730VW, M720V...

5.9CVSS5.8AI score0.00614EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.4 views

PT-2026-24177

Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric CNC M800V Series M800VW and M800VS, M80V Series M80V and M80VW, M800 Series M800W and M800S, M80 Series M80 and M80W, E80 Series E80, C80 Series C80, M700V Series M750VW, M720VW, 730VW, M720V...

5.9CVSS5.8AI score0.00614EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.6 views

Quinn 安全漏洞

Quinn is a pure Rust implementation of the IETF QUIC transport protocol, developed by quinn-rs. Versions of Quinn prior to 0.11.14 contained a security vulnerability. This vulnerability stemmed from decoding varints during the parsing of specially crafted QUIC initial packets, which could lead to...

8.7CVSS7.3AI score0.005EPSS
Exploits0References3
Rows per page
Query Builder