Lucene search
K

33 matches found

ATTACKERKB
ATTACKERKB
added 5 hours ago2 views

CVE-2026-57245

When the application opens a PDF, traverses and builds the annotation elements related to hyperlinks, it fails to validate the abnormal annotation relationships and field combinations. This results in the internal objects entering an invalid state. Eventually, during the destruction phase, an...

7.8CVSS5.9AI score
Exploits0References2Affected Software2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in gnutls28

A heap-buffer-overflow off-by-one flaw was discovered in the GnuTLS software during the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds OOB NULL pointer write, resulting in memory corruption a...

8.2CVSS6.5AI score0.0072EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/10/07 7:40 a.m.8 views

gnutls: Vulnerability in GnuTLS certtool template parsing

A heap-buffer-overflow off-by-one flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds OOB NULL pointer write, resulting in memory corruption and a...

8.2CVSS6.7AI score0.0072EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5685

Malware in sbrugna...

7.5CVSS7.4AI score0.30865EPSS
Exploits5References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-2600

Malware in sbrugna...

9.8CVSS9.2AI score0.03938EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/10/01 7:44 a.m.6 views

CVE-2025-39917

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds dynptr write in bpfcryptocrypt Stanislav reported that in bpfcryptocrypt the destination dynptr's size is not validated to be at least as large as the source dynptr's size before calling into the crypto...

7.8CVSS6.2AI score0.00142EPSS
Exploits0
Cvelist
Cvelist
added 2025/07/31 8:25 p.m.8 views

CVE-2025-48073 OpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a...

4.6CVSS0.00198EPSS
Exploits1References2
CVE
CVE
added 2025/07/31 8:25 p.m.39 views

CVE-2025-48073

OpenEXR 3.3.2 is vulnerable when reading a deep scanline image with a large sample count in reduceMemory mode, potentially crashing the target application via a NULL pointer dereference in a write operation. The issue is caused during the write path in ScanLineProcess::run_fill when the sample bu...

6.2CVSS6.4AI score0.00198EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/07/10 10:15 a.m.3 views

UBUNTU-CVE-2025-32990

A heap-buffer-overflow off-by-one flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds OOB NULL pointer write, resulting in memory corruption and a...

8.2CVSS6.8AI score0.0072EPSS
Exploits0References6
Snyk
Snyk
added 2025/07/09 7:0 a.m.3 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the template parsing process within the certtool utility. An attacker can cause memory corruption and potentially crash the system by providing a specially crafted template file that triggers an out-of-boun...

8.2CVSS7AI score0.0072EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.4 views

PT-2025-29106

Name of the Vulnerable Software and Affected Versions: GnuTLS affected versions not specified Description: A flaw exists in GnuTLS within the gnutls figure common ciphersuite function. Reading specific settings from a template file can lead to an out-of-bounds NULL pointer write, causing memory...

8.2CVSS7AI score0.01185EPSS
Exploits0References127
RedhatCVE
RedhatCVE
added 2025/05/22 10:35 a.m.14 views

CVE-2019-12323

The HC.Server service in Hosting Controller HC10 10.14 allows an Invalid Pointer Write DoS...

7.5CVSS6.8AI score0.08793EPSS
Exploits5References1
BDU FSTEC
BDU FSTEC
added 2025/03/03 12:0 a.m.8 views

The vulnerability of the websReadEvent function in the /goform/GetIPTV file of the Tenda i9 wireless access point software allows a hacker to cause a service failure.

The vulnerability of the websReadEvent function in the /goform/GetIPTV function of the Tenda i9 wireless access point software is related to incorrect writing of a null pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

6.8CVSS6.5AI score0.01195EPSS
Exploits1References6
Mageia
Mageia
added 2024/06/28 2:41 a.m.25 views

Updated libopenmpt packages fix security vulnerabilities

Possible out-of-bounds read or write when reading malformed MED files. r19389. Null-pointer write 32bit platforms or excessive memory allocation 64bit platforms when reading close to 4GiB of data from unseekable files r20336, r20338. Write buffer overflow when reading unseekable files close to 4G...

7.8AI score
Exploits0References6
OSV
OSV
added 2024/06/28 2:41 a.m.3 views

MGASA-2024-0242 Updated libopenmpt packages fix security vulnerabilities

Possible out-of-bounds read or write when reading malformed MED files. r19389. Null-pointer write 32bit platforms or excessive memory allocation 64bit platforms when reading close to 4GiB of data from unseekable files r20336, r20338. Write buffer overflow when reading unseekable files close to 4G...

7.6AI score
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.5 views

SUSE CVE-2022-26495

In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBDOPTINFO,...

8.1CVSS7.4AI score0.02738EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2021/03/15 12:0 a.m.326 views

Trojan-Dropper.Win32.Delf.xk Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/869c813722be90cf1b3708051103ce14.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Dropper.Win32.Delf.xk Vulnerability: Remote Invalid Pointer Write DOS Description:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/04 12:0 a.m.292 views

HEUR.RISKTOOL.WIN32.BITMINER.GEN Remote Memory Corruption / Null Pointer

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/b85ae73dbbfff1d3b90cb7c78356f2a3.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HEUR.RISKTOOL.WIN32.BITMINER.GEN Vulnerability: Remote Memory Corruption Description: Null pointer...

0.5AI score
Exploits0
Veracode
Veracode
added 2020/09/21 6:26 a.m.9 views

Arbitrary Code Execution

teeworlds is vulnerable to arbitrary code execution. The vulnerability exists through a failed bounds check in CDataFileReader::GetData and CDataFileReader::ReplaceData caused by out-of-bounds pointer write...

9.8CVSS3.4AI score0.03938EPSS
Exploits0References5Affected Software4
OSV
OSV
added 2020/06/08 6:15 p.m.25 views

CVE-2020-13432

rejetto HFS aka HTTP File Server v2.3m Build 300, when virtual files or folders are used, allows remote attackers to trigger an invalid-pointer write access violation via concurrent HTTP requests with a long URI or long HTTP headers...

7.5CVSS7AI score
Exploits0References7
Rows per page
Query Builder