Lucene search
K

80288 matches found

Hacker One
Hacker One
added 2026/03/11 12:40 a.m.13 views

curl: NULL Pointer Dereference (DoS) in libcurl SFTP QUOTE command parsing due to missing return statement

Summary: A logic flaw in lib/vssh/libssh2.c causes a NULL pointer dereference when parsing SFTP QUOTE commands with trailing garbage. The function returnquoteerror is called to handle errors and free memory, but the return keyword is missing in several blocks e.g., lines 840, 857, 870. This allow...

5.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/11 12:24 a.m.0 views

SUSE CVE-2026-28691

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References10
Redos
Redos
added 2026/03/11 12:0 a.m.4 views

ROS-20260311-73-0015

Vulnerability in expat related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

2.9CVSS5.8AI score0.0017EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.7 views

Security Updates for Microsoft Office Products (March 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the march-10-2026 advisory. - Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-26113 - Use after free in...

8.4CVSS6.2AI score0.00543EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.9 views

openSUSE 16 Security Update : ImageMagick (openSUSE-SU-2026:20337-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20337-1 advisory. - CVE-2026-22770: improper pointer initialization can cause denial of service bsc1256969. - CVE-2026-23874: manipulation of digital images can...

9.8CVSS6.1AI score0.00671EPSS
Exploits3References114
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.2 views

openSUSE 15 Security Update : c3p0 and mchange-commons (SUSE-SU-2026:0855-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0855-1 advisory. c3p0: - Security issues fixed: - CVE-2026-27830: Fixed unsafe object deserialization bsc1258942 - Fix the null pointer exception in the...

9.8CVSS6AI score0.00812EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.4 views

SUSE SLES12 Security Update : ImageMagick (SUSE-SU-2026:0854-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0854-1 advisory. - CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. - CVE-2026-24485: denial of service...

9.8CVSS5.9AI score0.0045EPSS
Exploits0References46
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.9 views

SUSE SLES15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2026:0852-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0852-1 advisory. - CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. - CVE-2026-24484: denial ...

9.8CVSS7AI score0.00671EPSS
Exploits0References94
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.6 views

SUSE SLED15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2026:0853-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0853-1 advisory. - CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. - CVE-2026-24484:...

9.8CVSS6.9AI score0.00671EPSS
Exploits0References82
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10765

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10767

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10764

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10766

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10758

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10760

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.2 views

EUVD-2026-10761

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10748

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.2 views

EUVD-2026-10749

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.6 views

EUVD-2026-10759

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.6 views

EUVD-2026-10746

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
Rows per page
Query Builder