Lucene search
+L

4 matches found

attackerkb
attackerkb
added 2026/01/16 8:10 p.m.17 views

CVE-2026-23744

MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution RCE vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam...

9.8CVSS6.5AI score0.43671EPSS
Exploits35References3Affected Software1
cvelist
cvelist
added 2026/01/10 12:31 a.m.29 views

CVE-2026-22697 CryptoLib Has Heap Buffer Overflow Vulnerability in KMC Base64 Decode Handling (KMC JSON base64ciphertext/base64cleartext)

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, CryptoLib’s KMC crypto service integration is...

7.5CVSS0.00453EPSS
Exploits1References2
cvelist
cvelist
added 2026/01/10 12:24 a.m.22 views

CVE-2026-22027 CryptoLib Vulnerable to Heap Buffer Overflow in MariaDB SA Hexstring Conversion

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the converthexstringtobytearray function in th...

5.7CVSS0.00209EPSS
Exploits1References3
cve
cve
added 2026/01/10 12:11 a.m.19 views

CVE-2026-21899

CVE-2026-21899 affects CryptoLib (SDLS-EP) used with cFS ground stations. Prior to v1.4.3, base64urlDecode dereferences input[inputLen-1] before validating inputLen or NULL input, causing an out-of-bounds read at input[-1] when inputLen==0 and potentially a NULL dereference if input==NULL and inp...

4.9CVSS6.5AI score0.00317EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder