Lucene search
K

234 matches found

Tenable Nessus
Tenable Nessus
added 5 days ago4 views

Linux Distros Unpatched Vulnerability : CVE-2026-15167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service CVE-2026-15167 Note that Nessus relies on the presence...

7.5CVSS7AI score0.00156EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 6 days ago5 views

PT-2026-56594

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.6 Wireshark versions 4.4.0 through 4.4.16 Description A crash in the DBS Etherwatch file parser allows a denial of service. This issue is network-accessible and requires no authentication. Recommendations...

7.5CVSS6.1AI score0.00156EPSS
Exploits0References4
OSV
OSV
added 2026/06/26 8:55 p.m.13 views

GHSA-FHP4-PR5J-46M5 Muhammara has a NULL pointer dereference in LZWDecode filter when DecodeParms omits EarlyChange key

Summary A NULL pointer dereference vulnerability exists in PDFParser::CreateFilterForStream when processing a PDF stream with /Filter /LZWDecode and a /DecodeParms dictionary that does not contain the EarlyChange key. This causes an access violation 0xC0000005 and crashes the process. Affected...

7.5CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2026/06/25 12:1 p.m.3 views

RLSA-2023:7015 Moderate: wireshark security update

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: RTPS dissector crash CVE-2023-0666 wireshark: VMS TCPIPtrace file parser crash CVE-2023-2856 wireshark: NetScaler file parser crash...

6.5CVSS5.9AI score0.02256EPSS
Exploits4References5
CVE
CVE
added 2026/06/12 8:52 p.m.41 views

CVE-2026-4870

CVE-2026-4870: IBM Qiskit SDK versions 0.43.0 through 2.5.0 are affected by a recursion-related issue in the parser that can trigger a segmentation fault and cause a denial of service. Public details in NVD/CVE records confirm the affected product range and the root cause as uncontrolled deep rec...

7.5CVSS5.3AI score0.00268EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/11 6:7 p.m.11 views

CVE-2026-53702

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.2AI score0.00228EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/02 3:25 p.m.11 views

EUVD-2026-33958

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing a remote unauthenticated attacker to crash the telemetr...

7.5CVSS5.8AI score0.00463EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/02 3:25 p.m.40 views

CVE-2026-45685 OpenTelemetry eBPF Instrumentation: MongoDB parser panics on malformed wire messages

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing a remote unauthenticated attacker to crash the telemetr...

7.5CVSS0.00463EPSS
Exploits1References2
SUSE Linux
SUSE Linux
added 2026/06/01 10:3 a.m.29 views

Security update for wireshark

This update for wireshark fixes the following issues CVE-2026-5401: AFP dissector crash bsc1263756. CVE-2026-5403: SBC audio codec crash bsc1263765. CVE-2026-5404: K12 RF5 file parser crash bsc1263766. CVE-2026-5405: RDP dissector crash bsc1263767. CVE-2026-5406: FC-SWILS dissector crash...

8.8CVSS6.7AI score0.00206EPSS
Exploits29References116
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Wireshark

The NetScreen file parser crashes in Wireshark versions 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18. This issue allows for denial of service through malicious capture files...

7.8CVSS6.8AI score0.03456EPSS
Exploits0References2
OSV
OSV
added 2026/05/16 1:33 a.m.13 views

CLSA-2026-1778895199 Fix CVE(s): CVE-2024-50602

SECURITY UPDATE: Crash in XMLResumeParser because XMLStopParser can stop/suspend an unstarted parser - debian/patches/CVE-2024-50602.patch: make XMLStopParser refuse to stop/suspend an unstarted parser - CVE-2024-50602...

5.9CVSS5.8AI score0.0104EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.9 views

XML::LibXML 缓冲区错误漏洞

XML::LibXML is an open-source Perl interface tool developed by CPAN authors for parsing and manipulating XML files. Versions of XML::LibXML 2.0210 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the parsing of XML node names that contained truncated UTF-8 byte...

7.5CVSS6AI score0.00531EPSS
Exploits0References1
OSV
OSV
added 2026/05/09 12:32 p.m.7 views

OESA-2026-2227 wireshark security update

Wireshark is an open source tool for profiling network traffic and analyzing packets. Such a tool is often referred to as a network analyzer, network protocol analyzer or sniffer. Security Fixes: ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of...

7.8CVSS5.9AI score0.00206EPSS
Exploits37References38
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.18 views

PT-2026-39305

Name of the Vulnerable Software and Affected Versions eml parser version 3.0.0 Description A recursion denial of service exists in the get raw body text function within eml parser/parser.py. The function recurses unconditionally for every nested message/rfc822 attachment without a depth limit. An...

6.3CVSS5.8AI score0.00395EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.9 views

Wireshark 代码问题漏洞

Wireshark is a set of network packet analysis software developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4 had code vulnerabilities that could lead to a denial-of-service attack du...

5.5CVSS5.9AI score0.00181EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.12 views

Wireshark 安全漏洞

Wireshark is a set of network packet analysis tools developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4, as well as 4.4.0 to 4.4.14, have security vulnerabilities. These...

5.5CVSS5.8AI score0.0012EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.7 views

Wireshark 2.2.x < 2.2.13 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.2.13. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.13 advisory. - In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in...

7.5CVSS6.8AI score0.02743EPSS
Exploits2References53
Cvelist
Cvelist
added 2026/04/30 11:4 p.m.34 views

CVE-2026-5404 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in Wireshark

K12 RF5 file parser crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

4.7CVSS0.0012EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2026/04/30 11:4 p.m.15 views

CVE-2026-5404

K12 RF5 file parser crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.0012EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/30 11:4 p.m.6 views

EUVD-2026-26460

K12 RF5 file parser crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

4.7CVSS5.2AI score0.0012EPSS
Exploits1References2
Rows per page
Query Builder