Lucene search
K

80288 matches found

AlpineLinux
AlpineLinux
added 2026/03/16 6:54 a.m.1 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

5.5CVSS5.8AI score0.00144EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.6 views

arduino-TuyaOpen 代码问题漏洞

Arduino-TuyaOpen is an IoT development framework based on Arduino, open-sourced by Tuya. Versions of Arduino-TuyaOpen prior to 1.2.1 had code vulnerabilities. These vulnerabilities stemmed from a null pointer dereferencing in the WiFiUDP component, which could lead to a denial-of-service attack...

7.1CVSS5.9AI score0.00271EPSS
Exploits0References3
CNVD
CNVD
added 2026/03/16 12:0 a.m.5 views

Fortinet FortiWeb Code Issue Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

6.5CVSS5.8AI score0.00386EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.13 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2026-1610)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the...

7.8CVSS7.5AI score0.00544EPSS
Exploits6References241
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.6 views

libexpat 代码问题漏洞

libexpat is a streaming XML parser written in C language by the libexpat team. Versions of libexpat prior to 2.7.5 had code vulnerabilities. These vulnerabilities stemmed from the setContext function potentially causing null pointer dereferencing during retries when memory was insufficient in...

5.5CVSS7.2AI score0.00143EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

libexpat 代码问题漏洞

libexpat is a streaming XML parser written in C language by the libexpat team. Versions of libexpat prior to 2.7.5 had code vulnerabilities; these vulnerabilities stemmed from allowing null pointer dereferencing when handling empty external parameter entity content...

5.5CVSS7.2AI score0.00144EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-32776

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content. CVE-2026-32776 Note that Nessus relies on the presence of...

5.5CVSS7.1AI score0.00144EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.0 views

Mageia: Security Advisory (MGASA-2026-0055)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.2 views

EulerOS Virtualization 2.12.0 : openjpeg2 (EulerOS-SA-2026-1505)

According to the versions of the openjpeg2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c.CVE-2025-50952 Tenable has...

6.5CVSS5.9AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-32778

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition. CVE-2026-32778 Note that...

5.5CVSS7.1AI score0.00143EPSS
Exploits0References4
CVE
CVE
added 2026/03/15 1:36 p.m.17 views

CVE-2026-28522

CVE-2026-28522 affects the arduino-TuyaOpen library prior to 1.2.1, where a null pointer dereference in the WiFiUDP component can be triggered by a high volume of UDP packets sent by an attacker on the same local network, causing memory exhaustion and a denial-of-service condition. The descriptio...

7.1CVSS5.8AI score0.00271EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/15 1:36 p.m.2 views

CVE-2026-28522

arduino-TuyaOpen before version 1.2.1 contains a null pointer dereference vulnerability in the WiFiUDP component. An attacker on the same local area network can send a large volume of malicious UDP packets that trigger a null pointer dereference, resulting in a denial-of-service condition...

7.1CVSS5.8AI score0.00271EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/03/15 8:2 a.m.7 views

NFA regex engine NULL pointer dereference affects Vim < 9.2.0137

...

5.5CVSS5.8AI score0.00133EPSS
Exploits0
OSV
OSV
added 2026/03/15 5:54 a.m.5 views

OESA-2026-1568 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid accessing metadata when pointer is invalid in objecterr objecterr reports details of an object for further debugging, such as the freelist pointer...

7.8CVSS6.5AI score0.00149EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/15 12:0 a.m.6 views

PT-2026-25553

arduino-TuyaOpen before version 1.2.1 contains a null pointer dereference vulnerability in the WiFiUDP component. An attacker on the same local area network can send a large volume of malicious UDP packets to cause memory exhaustion on the device, triggering a null pointer dereference and resulti...

7.1CVSS5.8AI score0.00271EPSS
Exploits0References6
OSV
OSV
added 2026/03/14 12:33 a.m.5 views

MGASA-2026-0055 Updated vim packages fix security vulnerability

NFA regex engine NULL pointer dereference affects Vim 9.2.0137. CVE-2026-32249...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References4
Mageia
Mageia
added 2026/03/14 12:33 a.m.7 views

Updated vim packages fix security vulnerability

NFA regex engine NULL pointer dereference affects Vim 9.2.0137. CVE-2026-32249...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/13 5:2 p.m.4 views

CVE-2026-32249

A flaw was found in Vim. A NULL pointer dereference can occur when the NFA regex compiler processes a specific character collection, more specifically one that contains a combining character acting as the endpoint of a character range e.g., 0-0\u05bb. A process or user that can supply a regex...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References6
OSV
OSV
added 2026/03/13 2:40 p.m.4 views

CLSA-2026-1773412800 Fix CVE(s): CVE-2026-25795

SECURITY UPDATE: nULL pointer dereference and crash during image read when temporary file creation fails - debian/patches/CVE-2026-25795.patch: Destroy readinfo after copying filename and avoid NULL pointer dereference in ReadSFWImage; cause: incorrect order of operations when temporary file...

7.5CVSS7.2AI score0.00376EPSS
Exploits0References1
OSV
OSV
added 2026/03/13 8:41 a.m.3 views

OPENSUSE-SU-2026:20354-1 Security update for libsoup2

This update for libsoup2 fixes the following issues: - CVE-2025-4476: null pointer dereference may lead to denial of service bsc1243422. - CVE-2025-14523: Duplicate Host Header Handling Causes Host-Parsing Discrepancy bsc1254876. - CVE-2025-32049: Denial of Service attack to websocket server...

9.1CVSS8.1AI score0.00728EPSS
Exploits3References22
Rows per page
Query Builder