Lucene search
K

21 matches found

RedHat Linux
RedHat Linux
added last week3 views

gstreamer1-plugins-bad-free: GStreamer: Signed integer overflow in VMnc decoder cursor payload handling

A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. A crafted VMnc stream with large cursor dimensions can overflow signed integer payload-size arithmetic, bypassing a length check and leading to out-of-bounds reads. A remote attacker could trick a user into opening a...

7.1CVSS6AI score0.0031EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/07 1:42 p.m.8 views

389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/06/25 10:21 p.m.8 views

golang.org/x/crypto vulnerable to infinite loop on large channel writes

When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation...

9.1CVSS6AI score0.00466EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/02 3:25 p.m.11 views

CVE-2026-45686 OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References2
OSV
OSV
added 2026/06/02 3:25 p.m.2 views

CVE-2026-45686 OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS6AI score0.00354EPSS
Exploits1References4
OSV
OSV
added 2026/05/18 8:21 p.m.7 views

GHSA-43G7-CWR8-Q3JH OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

Summary A remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing memcached storage commands such as set, add, replace, append, prepend, or cas, OBI accepts extremely large values and adds the payload delimite...

7.5CVSS6.3AI score0.00354EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.4 views

SUSE SLED15 / SLES15 Security Update : kea (SUSE-SU-2026:1378-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1378-1 advisory. Update to release 2.6.5: A large number of bracket pairs in a JSON payload directed to any endpoint would result in a...

7.5CVSS5.8AI score0.01361EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/27 11:21 p.m.3 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References2
OSV
OSV
added 2026/03/27 11:21 p.m.4 views

CVE-2026-1679 net: eswifi socket send payload length not bounded

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.2AI score0.00215EPSS
Exploits1References4
NVD
NVD
added 2026/03/22 2:16 p.m.4 views

CVE-2019-25597

NSauditor 3.1.2.0 contains a buffer overflow vulnerability in the SNMP Auditor Community field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a large payload into the Community field and trigger the Walk function to cause a denial...

6.9CVSS0.00238EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.10 views

PJSIP 安全漏洞

PJSIP is an open-source, free and open-source multimedia communication library developed in C language. It implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Prior to version 2.17, PJSIP had a security vulnerability caused by a stack buffer overflow during the parsin...

8.7CVSS6.2AI score0.00314EPSS
Exploits0References2
CVE
CVE
added 2026/02/11 8:37 p.m.13 views

CVE-2020-37205

RemShutdown 2.9.0.0 contains a denial-of-service vulnerability caused by overflowing the registration field named “Name.” A 1000-character payload pasted into the Name field can crash the application. CVSS data shows conflicting metrics (4.0/4.6: Medium, local access, user interaction; 3.1/7.5: H...

7.5CVSS5.8AI score0.00383EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/11 8:37 p.m.14 views

CVE-2020-37197

CVE-2020-37197 affects the Dnss Domain Name Search Software. The vulnerability arises in the registration Name input field, where an attacker can supply a crafted 1000-character payload to trigger a crash, resulting in a Denial of Service . The NVD/NVD-derived data confirms the attack vector as n...

7.5CVSS5.8AI score0.00441EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/11 8:37 p.m.10 views

CVE-2020-37194

CVE-2020-37194 affects Backup Key Recovery 2.2.5. A denial-of-service condition exists in the registration key input: supplying an overly long key (e.g., a 1000-character payload) can crash the application. The entry provides CVSS metrics (v4.0: LOCAL, LOW PR, ACTIVE user interaction; base score ...

7.5CVSS5.5AI score0.00317EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/11 8:37 p.m.29 views

CVE-2020-37191 Top Password Software Dialup Password Recovery 1.30 - Denial of Service

Top Password Software Dialup Password Recovery 1.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing input fields. Attackers can trigger the vulnerability by inserting a large 5000-character payload into the User Name and Registration Code...

7.5CVSS0.00282EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/11 8:37 p.m.22 views

CVE-2020-37185 Backup Key Recovery 2.2.5 - 'Name' Denial of Service

Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash...

7.5CVSS0.00304EPSS
Exploits0References3
OSV
OSV
added 2026/02/04 5:16 p.m.8 views

UBUNTU-CVE-2026-23059

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Sanitize payload size to prevent member overflow In qla27xxcopyfpinpkt and qla27xxcopymultiplepkt, the framesize reported by firmware is used to calculate the copy length into item-iocb. However, the iocb member is...

5.8AI score0.00168EPSS
Exploits0References16
CVE
CVE
added 2026/02/03 10:1 p.m.15 views

CVE-2020-37065

CVE-2020-37065 affects StreamRipper32 version 2.6. The vulnerability is a buffer overflow in the Station/Song Section triggered by the SongPattern input, where payloads exceeding 256 bytes can overwrite memory and potentially lead to arbitrary code execution and application compromise. Documented...

9.8CVSS6.2AI score0.00329EPSS
Exploits0References3
Prion
Prion
added 2022/05/19 6:15 p.m.20 views

Buffer overflow

A malicious attacker could exploit the interface of the Fieldcomm Group HART-IP release 1.0.0.0 by constructing messages with sufficiently large payloads to overflow the internal buffer and crash the device, or obtain control of the device...

10CVSS9.6AI score0.01445EPSS
Exploits0References1Affected Software2
OSV
OSV
added 2018/05/31 8:29 p.m.3 views

DEBIAN-CVE-2016-10542

ws is a "simple to use, blazing fast and thoroughly tested websocket client, server and console for node.js, up-to-date against RFC-6455". By sending an overly long websocket payload to a ws server, it is possible to crash the node process. This affects ws 1.1.0 and earlier...

7.5CVSS6.9AI score0.07539EPSS
Exploits0References1
Rows per page
Query Builder