Lucene search
K

997 matches found

Vulnrichment
Vulnrichment
added 2026/04/13 4:45 p.m.4 views

CVE-2026-6192 uclouvain openjpeg pi.c opj_pi_initialise_encode integer overflow

A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library src/lib/openjp2/pi.c. The manipulation leads to integer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. The...

4.8CVSS5.3AI score0.00112EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/10 9:0 a.m.8 views

CVE-2026-6042 musl libc GB18030 4-byte Decoder iconv.c iconv algorithmic complexity

A security flaw has been discovered in musl libc up to 1.2.6. Affected is the function iconv of the file src/locale/iconv.c of the component GB18030 4-byte Decoder. Performing a manipulation results in inefficient algorithmic complexity. The attack must be initiated from a local position. To fix...

4.8CVSS5.4AI score0.00227EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/09 7:0 p.m.3 views

CVE-2026-5972

A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.runcommand in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed ...

7.5CVSS6.4AI score0.02328EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2026/04/06 2:15 p.m.5 views

CVE-2026-5663

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote exploitation of the attack is possible...

9.8CVSS6.9AI score0.01721EPSS
Exploits0
EUVD
EUVD
added 2026/03/30 6:30 a.m.7 views

EUVD-2026-17060

A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function processtype2route of the file bgpd/bgpevpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The attack is considered to ha...

4.2CVSS5.2AI score0.00279EPSS
Exploits0References7
OSV
OSV
added 2026/03/30 6:16 a.m.6 views

UBUNTU-CVE-2026-5107

A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function processtype2route of the file bgpd/bgpevpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The attack is considered to ha...

4.2CVSS5AI score0.00279EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/03/30 5:0 a.m.2 views

CVE-2026-5107 FRRouting FRR EVPN Type-2 Route bgp_evpn.c process_type2_route access control

A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function processtype2route of the file bgpd/bgpevpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The attack is considered to ha...

4.2CVSS5.3AI score0.00279EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.7 views

PT-2026-28761

Name of the Vulnerable Software and Affected Versions FRRouting FRR versions up to 10.5.1 Description A security issue exists in FRRouting FRR related to improper access controls within the EVPN Type-2 Route Handler component. The issue is located in the process type2 route function of the bgpd/b...

4.2CVSS5.7AI score0.00279EPSS
Exploits0References33
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.5 views

CVE-2026-4541

A flaw has been found in janmojzis tinyssh up to 20250501. Impacted is an unknown function of the file tinyssh/cryptosigned25519tinyssh.c of the component Ed25519 Signature Handler. This manipulation causes improper verification of cryptographic signature. The attack is restricted to local...

2.5CVSS4.7AI score0.00083EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:14 p.m.5 views

CVE-2026-4198

A vulnerability was determined in hypermodel-labs mcp-server-auto-commit 1.0.0. Affected by this vulnerability is the function getGitChanges of the file index.ts. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly disclosed and may b...

5.3CVSS5.6AI score0.00649EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.5 views

CVE-2026-3977

A security vulnerability has been detected in projectsend up to r1945. The affected element is an unknown function of the component AJAX Endpoints. The manipulation leads to missing authorization. The attack can be initiated remotely. The identifier of the patch is...

6.5CVSS6AI score0.00276EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.6 views

EulerOS Virtualization 2.12.0 : libtiff (EulerOS-SA-2026-1498)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the fil...

8.8CVSS5.2AI score0.00739EPSS
Exploits4References7
EUVD
EUVD
added 2026/03/16 3:30 p.m.7 views

EUVD-2026-12267

A vulnerability was determined in hypermodel-labs mcp-server-auto-commit 1.0.0. Affected by this vulnerability is the function getGitChanges of the file index.ts. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly disclosed and may b...

5.3CVSS5.4AI score0.00649EPSS
Exploits0References8
NVD
NVD
added 2026/03/16 2:20 p.m.4 views

CVE-2026-4198

A vulnerability was determined in hypermodel-labs mcp-server-auto-commit 1.0.0. Affected by this vulnerability is the function getGitChanges of the file index.ts. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly disclosed and may b...

5.3CVSS0.00649EPSS
Exploits0References7
CVE
CVE
added 2026/03/16 12:2 a.m.10 views

CVE-2026-4199

The vulnerability CVE-2026-4199 affects bazinga012/mcp_code_executor up to v0.3.0, specifically the installDependencies function in src/index.ts. The issue enables command injection via local exploitation. The exploit is publicly available, and patching is advised. No additional details on affect...

5.3CVSS5.7AI score0.00636EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

EulerOS 2.0 SP12 : gdb (EulerOS-SA-2026-1358)

According to the versions of the gdb packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangletype in...

7.8CVSS5.5AI score0.00667EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.6 views

EulerOS 2.0 SP10 : gdb (EulerOS-SA-2026-1333)

According to the versions of the gdb packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component...

7.8CVSS5.5AI score0.00251EPSS
Exploits5References6
ATTACKERKB
ATTACKERKB
added 2026/03/12 8:32 a.m.3 views

CVE-2026-4016

A security vulnerability has been detected in GPAC 26.03-DEV. Affected by this vulnerability is the function svginprocess of the file src/filters/loadsvg.c of the component SVG Parser. The manipulation leads to out-of-bounds write. Local access is required to approach this attack. The exploit has...

5.3CVSS5.2AI score0.00115EPSS
Exploits0References7
NVD
NVD
added 2026/03/12 4:16 a.m.6 views

CVE-2026-3979

A flaw has been found in quickjs-ng quickjs up to 0.12.1. This affects the function jsiteratorconcatreturn of the file quickjs.c. This manipulation causes use after free. The attack requires local access. The exploit has been published and may be used. Patch name:...

5.3CVSS0.00112EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.8 views

EulerOS 2.0 SP13 : gdb (EulerOS-SA-2026-1234)

According to the versions of the gdb packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker...

7.8CVSS5.7AI score0.00667EPSS
Exploits6References7
Rows per page
Query Builder