Lucene search
+L

897 matches found

osv
osv
added 6 days ago1 views

MINI-GQM3-35MW-5PHG

Bulletin has no description...

7.8CVSS6.1AI score0.00183EPSS
Exploits0
susecve
susecve
added 6 days ago6 views

SUSE CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

5.5CVSS6.1AI score0.00891EPSS
Exploits1References8
nvd
nvd
added 2026/07/08 9:16 a.m.9 views

CVE-2026-57245

When the application opens a PDF, traverses and builds the annotation elements related to hyperlinks, it fails to validate the abnormal annotation relationships and field combinations. This results in the internal objects entering an invalid state. Eventually, during the destruction phase, an...

7.8CVSS0.00116EPSS
Exploits0References1
hackerone
hackerone
added 2026/06/25 7:56 a.m.14 views

curl: Use-after-free in `mev_forget_socket` when `curl_easy_pause()` is called from a `CURL_POLL_REMOVE` socket callback (incomplete fix of CVE-2026-9080)

Summary libcurl's event interface lets the application's socket callback CURLMOPTSOCKETFUNCTION call curleasypause. CVE-2026-9080 was issued for a use-after-free that this triggers, and the fix added a post-callback re-fetch of the socket-hash entry in the UPDATE leg mevshentryupdate,...

7.3CVSS5.8AI score0.00494EPSS
Exploits1
euvd
euvd
added 2026/06/24 6:32 p.m.6 views

EUVD-2026-38856

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

5.7AI score0.00122EPSS
Exploits0References3
nvd
nvd
added 2026/06/24 5:17 p.m.7 views

CVE-2026-53061

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix dirty mapping checking in passthrough mode switching As mentioned in commit 9b1cc9f251af "dm cache: share cache-metadata object across inactive and active DM tables", dm-cache assumed table reload occurs after...

0.00176EPSS
Exploits0References8
euvd
euvd
added 2026/06/24 4:30 p.m.8 views

EUVD-2026-38929

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix dirty mapping checking in passthrough mode switching As mentioned in commit 9b1cc9f251af "dm cache: share cache-metadata object across inactive and active DM tables", dm-cache assumed table reload occurs after...

5.7AI score0.00176EPSS
Exploits0References8
osv
osv
added 2026/06/24 4:30 p.m.4 views

CVE-2026-53061 dm cache: fix dirty mapping checking in passthrough mode switching

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix dirty mapping checking in passthrough mode switching As mentioned in commit 9b1cc9f251af "dm cache: share cache-metadata object across inactive and active DM tables", dm-cache assumed table reload occurs after...

5.8AI score0.00176EPSS
Exploits0References11
cvelist
cvelist
added 2026/06/24 4:29 p.m.33 views

CVE-2026-52988 netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

7.1CVSS0.00122EPSS
Exploits0References2
cve
cve
added 2026/06/24 4:29 p.m.11 views

CVE-2026-52988

The CVE-2026-52988 issue affects the Linux kernel netfilter nf_tables code, specifically the join hook list updated via splice_list_rcu() during commit phases. The vulnerability arises when new hooks are published to the basechain/flowtable while a concurrent ruleset update is ongoing, potentiall...

7.1CVSS5.7AI score0.00122EPSS
Exploits0References2Affected Software1
astralinux
astralinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: i2c: riic: Moving suspend handling to NOIRQ phase Commit 53326135d0e0 “i2c: riic: Adding suspend/resume support” added suspend support for the Renesas I2C driver. Following this change, on RZ/G3E, the following warning appears...

5.8AI score0.00166EPSS
Exploits0References2
astralinux
astralinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: usb: catc: enable basic endpoint checking The catcprobe function fills three URBs with hardcoded endpoint pipes without verifying the endpoint descriptors. This occurs as follows: - usbsndbulkpipeusbdev, 1 and...

5.5CVSS5.7AI score0.0016EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/24 12:0 a.m.12 views

PT-2026-51955

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the dm-cache component where the dirty mapping check for passthrough mode is performed during table creation. This design assumes that table reload occurs after...

5.9AI score0.00176EPSS
Exploits0References17
cve
cve
added 2026/06/22 4:38 p.m.33 views

CVE-2026-54278

CVE-2026-54278 affects the AIOHTTP framework for Python. Prior to 3.14.1, during cleanup a compressed request body could be decompressed in memory in one chunk, potentially enabling a DoS via a zip-bomb scenario. Impact is described as high for availability and no confidentiality/integrity impact...

8.7CVSS5.8AI score0.00279EPSS
Exploits0References2Affected Software1
githubexploit
githubexploit
added 2026/06/13 5:29 a.m.97 views

AutoVAPT

█████╗ ██╗ ██╗████████╗ ██████╗ ██╗ ██╗ █████╗ ██████╗...

9.3CVSS8AI score0.9923EPSS
Exploits55
githubexploit
githubexploit
added 2026/06/12 8:52 p.m.85 views

webstrike-framework

WebStrike — Automated Web Pentesting Framework Created by...

5.6AI score
Exploits0
githubexploit
githubexploit
added 2026/06/11 6:36 a.m.91 views

overflow_exploit_framework

kernel-research — Framework CVE overflow Usage éducatif uni...

7.8CVSS5.4AI score0.00317EPSS
Exploits1
osv
osv
added 2026/06/10 8:24 p.m.3 views

CVE-2026-48108 Russh: SSH identification parsing accepted non-canonical client banners and did not bound pre-banner input

Russh is a Rust SSH client & server library. From version 0.34.0-beta.1 to before version 0.61.0, russh did not enforce the SSH identification-string rules as deliberately as OpenSSH. In particular, the server-side identification reader used the same permissive path as the client, allowing...

5.3CVSS6AI score0.00277EPSS
Exploits0References3
debiancve
debiancve
added 2026/06/10 8:24 p.m.8 views

CVE-2026-48108

Russh is a Rust SSH client & server library. From version 0.34.0-beta.1 to before version 0.61.0, russh did not enforce the SSH identification-string rules as deliberately as OpenSSH. In particular, the server-side identification reader used the same permissive path as the client, allowing...

5.3CVSS5.5AI score0.00277EPSS
Exploits0
packetstormnews
packetstormnews
added 2026/06/09 12:0 a.m.9 views

Certification of Network Quantum Sensing

The distribution of quantum sensors on quantum networks is a key enabler of quantum technologies in interferometry, gravimetry, timekeeping, biological monitoring, and beyond. Yet, guaranteeing the security of these distributed sensors over noisy, insecure networks remains a formidable challenge...

5.7AI score
Exploits0
Rows per page
Query Builder