Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6960 matches found

ATTACKERKB
ATTACKERKBadded 2026/01/15 6:59 p.m.4 views

CVE-2026-22775

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS5.6AI score0.00491EPSS
Exploits0References4Affected Software1
EUVD
EUVDadded 2026/01/15 6:59 p.m.5 views

EUVD-2026-2680

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS6.2AI score0.00491EPSS
Exploits0References5
OSV
OSVadded 2026/01/15 6:59 p.m.3 views

CVE-2026-22775 devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS6.7AI score0.00491EPSS
Exploits0References5
CVE
CVEadded 2026/01/15 6:53 p.m.14 views

CVE-2026-22774

CVE-2026-22774 affects the Svelte devalue library. From versions 5.3.0 through 5.6.1, certain inputs trigger devalue.parse to consume excessive CPU time and memory when processing untrusted data, potentially causing denial of service. Root cause: typed array hydration assumes an ArrayBuffer input...

7.5CVSS6.4AI score0.00491EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/01/15 6:53 p.m.20 views

CVE-2026-22774 devalue vulnerable to denial of service due to memory exhaustion in devalue.parse

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.3.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS0.00491EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/01/15 6:53 p.m.2 views

CVE-2026-22774

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.3.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS5.6AI score0.00491EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2026/01/15 6:53 p.m.4 views

CVE-2026-22774 devalue vulnerable to denial of service due to memory exhaustion in devalue.parse

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.3.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS6.7AI score0.00491EPSS
Exploits0References5
NVD
NVDadded 2026/01/15 6:16 p.m.8 views

CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS0.00304EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2026/01/15 6:16 p.m.3 views

CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS5.9AI score0.00304EPSS
Exploits1References2
OSV
OSVadded 2026/01/15 6:16 p.m.3 views

UBUNTU-CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS5.8AI score0.00304EPSS
Exploits1References3
NVD
NVDadded 2026/01/15 5:16 p.m.4 views

CVE-2025-70298

GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmxparsetags function...

8.2CVSS0.00394EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2026/01/15 5:16 p.m.3 views

CVE-2025-70298

GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmxparsetags function...

8.2CVSS5.9AI score0.00394EPSS
Exploits1References2
OSV
OSVadded 2026/01/15 12:19 a.m.6 views

OSV-2026-57 Heap-buffer-overflow in mkv::matroska_segment_c::TrackInit

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=475261418 Crash type: Heap-buffer-overflow READ 1 Crash state: mkv::matroskasegmentc::TrackInit mkv::matroskasegmentc::TrackInit mkv::matroskasegmentc::ParseTrackEntry...

5.8AI score
Exploits0References1
CVE
CVEadded 2026/01/15 12:0 a.m.14 views

CVE-2025-70298

GPAC (open-source multimedia framework): CVE-2025-70298 affects GPAC v2.4.0, via an out-of-bounds read in oggdmx_parse_tags. The root cause is inadequate validation of input data length, enabling an attacker to trigger a denial of service. The vulnerability is documented across multiple sources (...

8.2CVSS6.9AI score0.00394EPSS
Exploits1References1Affected Software1
CNNVD
CNNVDadded 2026/01/15 12:0 a.m.6 views

GPAC 安全漏洞

GPAC is an open source multimedia framework. GPAC has a stack buffer overflow vulnerability that originates from the uncvparseconfig function failing to properly validate the length size of the input data, which can be exploited by an attacker to cause a denial of service...

5.5CVSS5.9AI score0.00188EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/01/15 12:0 a.m.4 views

GPAC 安全漏洞

GPAC is an open source multimedia framework. GPAC has a heap buffer overflow vulnerability that stems from the aviparseinputfile function failing to properly validate the length and size of the input data, which can be exploited by an attacker to cause a denial of service...

6.5CVSS5.9AI score0.00304EPSS
Exploits1References2
CVE
CVEadded 2026/01/15 12:0 a.m.16 views

CVE-2025-70303

CVE-2025-70303 concerns GPAC v2.4.0, where the uncv_parse_config() function is vulnerable to a heap overflow (CNVD and Red Hat listings corroborate as a DoS risk). Exploitation involves processing a crafted MP4 file, leading to denial of service. Connected sources consistently describe a DoS outc...

5.5CVSS6.6AI score0.00188EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/01/15 12:0 a.m.3 views

CVE-2025-70303

A heap overflow in the uncvparseconfig function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted MP4 file...

5.5CVSS5.5AI score0.00188EPSS
Exploits1References2
EUVD
EUVDadded 2026/01/15 12:0 a.m.3 views

EUVD-2026-2719

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS6.5AI score0.00304EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/01/15 12:0 a.m.18 views

CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

0.00304EPSS
Exploits1References1
Rows per page
Query Builder