Lucene search
+L

659 matches found

vulnrichment
vulnrichment
added 2026/05/01 3:59 p.m.4 views

CVE-2026-22166 GPU DDK - Write UAF in KEGLGetPoolBuffers, WebGL reachable

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable subsequent exploit on the...

5.8AI score0.00346EPSS
Exploits0References1
talos
talos
added 2026/04/27 12:0 a.m.17 views

OpenVPN TLS Crypt v2 Client Key Extraction denial of service vulnerability

Talos Vulnerability Report TALOS-2026-2381 OpenVPN TLS Crypt v2 Client Key Extraction denial of service vulnerability April 27, 2026 CVE Number CVE-2026-35058 SUMMARY A reachable assertion vulnerability exists in the TLS Crypt v2 Client Key Extraction functionality of OpenVPN 2.6.x and 2.8git. A...

7.5CVSS6.9AI score0.00815EPSS
Exploits0
snyk
snyk
added 2026/04/24 5:19 a.m.4 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the forEach mutation handler. An attacker can cause the cluster-wide background controller to crash into a persistent CrashLoopBackOff and disrupt all matching resource operations by creating a specially crafted...

8.3CVSS5.5AI score0.00369EPSS
Exploits1References2
nvd
nvd
added 2026/04/24 12:16 a.m.3 views

CVE-2026-40620

A vulnerability in SenseLive X3050’s embedded management service allows full administrative control to be established without any form of authentication or authorization on the SenseLive config application. The service accepts management connections from any reachable host, enabling unrestricted...

9.8CVSS0.00546EPSS
Exploits0References3
cvelist
cvelist
added 2026/04/24 12:2 a.m.31 views

CVE-2026-40620 SenseLive X3050 Missing authentication for critical function

A vulnerability in SenseLive X3050’s embedded management service allows full administrative control to be established without any form of authentication or authorization on the SenseLive config application. The service accepts management connections from any reachable host, enabling unrestricted...

9.8CVSS0.00546EPSS
Exploits0References3
nessus
nessus
added 2026/04/05 12:0 a.m.2 views

FreeBSD : nghttp2 -- CWE-617: Reachable Assertion (c08273b5-30e5-11f1-b9f2-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c08273b5-30e5-11f1-b9f2-b42e991fc52e advisory. https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6 reports: nghttp2 is an...

7.5CVSS5.9AI score0.00775EPSS
Exploits0References3
snyk
snyk
added 2026/04/04 1:21 a.m.3 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the transportflagsfromdomain function. An attacker can cause a crash of the daemon by sending a D-Bus method call with conflicting publish flags. Remediation A fix was pushed into the master branch but not yet...

6.8CVSS5.8AI score0.00203EPSS
Exploits1References2
redhatcve
redhatcve
added 2026/03/26 3:3 p.m.5 views

CVE-2026-32314

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. Prior to 0.13.10, the Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULTCREDIT e.g. 262145. On the first packet of a new...

8.7CVSS5.8AI score0.00451EPSS
Exploits1References1
nessus
nessus
added 2026/03/23 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Reachable Assertion (CVE-2025-38285)

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix WARN in getbpfrawtpregs syzkaller reported an issue: WARNING: CPU: 3 PID: 5971 at kernel/trace/bpftrace.c:1861 getbpfrawtpregs+0xa4/0x100 kernel/trace/bpftrace.c:1861 Modules linked in: CPU: 3 UID: 0 PID: 5971 Comm:...

5.5CVSS6AI score0.0017EPSS
Exploits0References2
snyk
snyk
added 2026/03/18 8:49 p.m.6 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion due to missing internal state validation after the nghttp2sessionterminatesession or nghttp2sessionterminatesession2 APIs are called. An attacker can cause the application to terminate unexpectedly by sending a...

8.7CVSS5.9AI score0.00775EPSS
Exploits0References2
freebsd
freebsd
added 2026/03/18 12:0 a.m.6 views

nghttp2 -- CWE-617: Reachable Assertion

https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6 reports: nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Prior to version 1.68.1, the nghttp2 library stops reading the incoming data when user facing public API nghttp2sessionterminatesessi...

7.5CVSS5.9AI score0.00775EPSS
Exploits0References1
veracode
veracode
added 2026/03/17 7:13 a.m.19 views

Path Traversal

github.com/weaviate/weaviate is vulnerable to Path Traversal. The vulnerability is due to insufficient validation of the fileName field in the transfer logic, which allows an attacker who can invoke the GetFile method while a shard is in the “Pause file activity” state and the...

4.9CVSS7.3AI score0.00435EPSS
Exploits0References6Affected Software1
redos
redos
added 2026/03/17 12:0 a.m.6 views

ROS-20260317-73-0034

A vulnerability in the populatefreespacetree function in the fs/btrfs/free-space-tree.c module of the btrfs file system of the Linux operating system kernel is associated with a reachable assertion. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00136EPSS
Exploits0
osv
osv
added 2026/03/16 2:19 p.m.1 views

DEBIAN-CVE-2026-32314

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. Prior to 0.13.10, the Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULTCREDIT e.g. 262145. On the first packet of a new...

7.5CVSS5.3AI score0.00451EPSS
Exploits1References1
osv
osv
added 2026/03/16 2:19 p.m.6 views

UBUNTU-CVE-2026-32314

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. Prior to 0.13.10, the Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULTCREDIT e.g. 262145. On the first packet of a new...

8.7CVSS5.8AI score0.00451EPSS
Exploits1References3
debiancve
debiancve
added 2026/03/13 7:53 p.m.4 views

CVE-2026-32314

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. Prior to 0.13.10, the Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULTCREDIT e.g. 262145. On the first packet of a new...

8.7CVSS5.3AI score0.00451EPSS
Exploits1
snyk
snyk
added 2026/03/06 10:54 p.m.4 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion in the qjs interpreter when executed with the -m option and a low memory limit. An attacker can trigger an out-of-memory condition followed by an assertion failure during runtime cleanup by providing crafted JavaScri...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References2
snyk
snyk
added 2026/03/06 8:57 p.m.6 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the gcdecrefchild function in the garbage collection process when executed with the -m option. An attacker can cause the application to abort and terminate unexpectedly by providing crafted JavaScript input that...

6.8CVSS5.8AI score0.00215EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/03/02 4:53 p.m.6 views

CVE-2025-47384 Reachable Assertion in FW

Transient DOS when MAC configures config id greater than supported maximum value...

6.5CVSS5.9AI score0.00105EPSS
Exploits0References1
cvelist
cvelist
added 2026/03/02 4:53 p.m.38 views

CVE-2025-47371 Reachable Assertion in Modem

Transient DOS when an LTE RLC packet with invalid TB is received by UE...

6.5CVSS0.00105EPSS
Exploits0References1
Rows per page
Query Builder