Lucene search
K

6066 matches found

RedHat Linux
RedHat Linux
added 2 days ago5 views

dnsmasq: RRSIG rdlen underflow leading to heap OOB read

A heap out-of-bounds read vulnerability was discovered in dnsmasq's DNSSEC validation. When processing RRSIG records, dnsmasq calculates the signature length by subtracting the fixed field size from the record's declared data length. A crafted RRSIG record with a data length smaller than the fixe...

7.5CVSS5.8AI score0.05729EPSS
Exploits0References5
NVD
NVD
added 3 days ago6 views

CVE-2026-44628

An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a valid Called AE Title / storage directory, the expected lockfile, and at least one matching worklist record...

8.7CVSS0.00395EPSS
Exploits0References3
EUVD
EUVD
added 3 days ago4 views

EUVD-2026-40412

An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a valid Called AE Title / storage directory, the expected lockfile, and at least one matching worklist record...

8.7CVSS5.8AI score0.00395EPSS
Exploits0References3
CVE
CVE
added 3 days ago12 views

CVE-2026-44628

CVE-2026-44628 corresponds to an OFFIS DCMTK Toolkit Type Confusion issue. An unauthenticated attacker can crash the worklist server by sending a single crafted query when the server has a valid Called AE Title/storage directory, the expected lockfile, and at least one matching worklist record. T...

8.7CVSS5.8AI score0.00395EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 3 days ago3 views

crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

A flaw was found in the crypto/tls package within the Go golang standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock,...

7.5CVSS7.1AI score0.00621EPSS
Exploits0References8
NVD
NVD
added 3 days ago8 views

CVE-2026-10652

Zephyr's DNS resolver subsys/net/lib/dns parses resource records from DNS responses in dnsunpackanswer, which validated only the fixed RR header type, class, TTL, rdlength and accepted any attacker-declared rdlength, including one extending past the end of the received datagram. The TXT and SRV...

4.8CVSS0.00203EPSS
Exploits0References2
CVE
CVE
added 3 days ago5 views

CVE-2026-10652

Summary: Zephyr's DNS resolver (dns_unpack_answer) validates only the fixed RR header and may accept an attacker-declared rdlength that extends past the datagram, enabling an out-of-bounds read in TXT/SRV parsing (dns_validate_record). This can leak stale memory contents to applications and, in s...

4.8CVSS5.8AI score0.00203EPSS
Exploits0References2
CVE
CVE
added 4 days ago7 views

CVE-2026-57949

ruoyi-vue-pro (through 2026.05) contains a missing authorization vulnerability in the CRM module’s GET /admin-api/crm/follow-up-record/get endpoint. The issue allows an authenticated user to read any follow-up record by iterating sequential numeric IDs, exfiltrating follow-up notes, file attachme...

7.1CVSS5.9AI score0.00231EPSS
Exploits0References3
Cvelist
Cvelist
added 4 days ago30 views

CVE-2026-57949 ruoyi-vue-pro - Missing Authorization in CRM Follow-up Record GET Endpoint

ruoyi-vue-pro through 2026.05, fixed in commit c779a47, contains a missing authorization vulnerability in the CRM module's GET /admin-api/crm/follow-up-record/get endpoint that allows authenticated users to read any follow-up record by iterating sequential numeric IDs. Attackers can exploit this ...

7.1CVSS0.00231EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 4 days ago8 views

CVE-2026-53305

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ps883x: Fix Oops at unbind When trying to unbind a device in order to bind to it vfio-platform as: echo bc0000.geniqup /sys/bus/platform/devices/bc0000.geniqup/driver/unbind I get the following Oops: 436.478639 Unable...

5.5CVSS5.7AI score0.00166EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 4 days ago10 views

Inside the Advisory Database and what happens when vulnerability volume breaks records

In May 2026, the GitHub Advisory Database published 1,560 reviewed advisories --more than five times our typical monthly output and the highest in its history. And it still wasn't enough to keep up. Over the past few months, the vulnerability ecosystem has shifted in a fundamental way. Input acro...

5.8AI score
Exploits0
EUVD
EUVD
added last week8 views

EUVD-2026-39647

libnfs through 6.0.2 before 935b8db has an xid integer underflow in READIOVEC in rpcreadfromsocket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds the absolute pdu size from the xid/record-marker...

7.1CVSS5.8AI score0.00195EPSS
Exploits0References1
CVE
CVE
added last week12 views

CVE-2026-57918

CVE-2026-57918 affects libnfs up to version 6.0.2 prior to the patch referenced by commit IDs f0b109d (NVD entry) / 935b8db (CVE record). The vulnerability is an xid integer underflow in READ_IOVEC within rpc_read_from_socket when a crafted NFS server causes the expected PDU size to exceed the ab...

7.1CVSS5.8AI score0.00195EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.10 views

SUSE SLES15 Security Update : bind (SUSE-SU-2026:2616-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2616-1 advisory. - CVE-2026-3592: Amplification vulnerabilities via self-pointed glue records bsc1265592. - CVE-2026-3039: BIND 9 server memory...

7.5CVSS5.9AI score0.0181EPSS
Exploits0References10
Circl
Circl
added 2026/06/25 10:59 p.m.5 views

CVE-2026-56771

creationtimestamp| type| source ---|---|--- 2026-06-25 22:59:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp5jtglqfg27...

8.5CVSS5.8AI score0.00204EPSS
Exploits0References1
OSV
OSV
added 2026/06/25 9:16 p.m.3 views

DEBIAN-CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

7.5CVSS6AI score0.00385EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/25 8:13 p.m.5 views

CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

8.8CVSS6AI score0.00385EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/06/25 4:17 p.m.8 views

K000161911: Node.js vulnerability CVE-2026-48936

Security Advisory Description A flaw in Node.js Permission API can cause a local server to be started via a Unix domain socket, even without the --allow-net permission. This vulnerability affects one supported release line: Node.js 26. CVE-2026-48936 Impact There is no impact; F5 products are not...

3.3CVSS6AI score0.00154EPSS
Exploits0
NVD
NVD
added 2026/06/25 1:16 p.m.10 views

CVE-2026-42004

An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when EDNS Client Subnet is inserted, causing the backend to see the EDNS options that DNSdist did not filter...

3.7CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 12:59 p.m.28 views

CVE-2026-42388 Missing input validation for catalog zones

Incomplete validation of the SOA record present in a catalog zone might lead to a crash...

5.9CVSS0.004EPSS
Exploits0References1
Rows per page
Query Builder