Lucene search
K

446 matches found

RedHat Linux
RedHat Linux
added 2026/03/12 2:31 p.m.2 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length...

9.1CVSS5.9AI score0.00756EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/03/12 8:52 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length...

9.1CVSS5.9AI score0.00756EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/03/09 6:7 p.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow flaw has been discovered in FreeRDP. In affected versions RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndrreaduint8Array...

9.8CVSS5.9AI score0.00662EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/02/23 10:55 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length...

9.1CVSS5.9AI score0.00756EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/02/23 10:17 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow flaw has been discovered in FreeRDP. In affected versions RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndrreaduint8Array...

9.8CVSS5.9AI score0.00662EPSS
Exploits1References6
Packet Storm News
Packet Storm News
added 2026/02/11 12:0 a.m.6 views

H.265/HEVC Video Steganalysis Based on CU Block Structure Gradients and IPM Mapping

Existing H.265/HEVC video steganalysis research mainly focuses on statistical feature modeling at the levels of motion vectors MV, intra prediction modes IPM, or transform coefficients. In contrast, studies targeting the coding-structure level - especially the analysis of block-level steganograph...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Fedora 42 : rpki-client (2026-d2431d8ac0)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d2431d8ac0 advisory. rpki-client 9.7 - The Canonical Cache Representation underwent a breaking change after the adoption of...

5.6AI score
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/01/19 12:0 a.m.4 views

Static Detection of Core Structures in Tigress Virtualization-Based Obfuscation Using an LLVM Pass

Malware often uses obfuscation to hinder security analysis. Among these techniques, virtualization-based obfuscation is particularly strong because it protects programs by translating original instructions into attacker-defined virtual machine VM bytecode, producing long and complex code that is...

5.7AI score
Exploits0
UbuntuCve
UbuntuCve
added 2026/01/14 6:16 p.m.5 views

CVE-2026-22853

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndrreaduint8Array. This vulnerabilit...

9.8CVSS6.1AI score0.00662EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/01/01 12:24 a.m.5 views

SUSE CVE-2025-68131

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Starting in version 3.0.0 and prior to version 5.8.0, whhen a CBORDecoder instance is reused across multiple decode operations, values marked with the shareable tag 28 persist in memory an...

5.5CVSS6.8AI score0.00423EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.13 views

PT-2026-2935

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.20.1 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A heap out-of-bounds read occurs in the smartcard SetAttrib path when the cbAttrLen variable does not match the actual NDR buffer...

9.8CVSS6.8AI score0.00756EPSS
Exploits6References239
Vulnrichment
Vulnrichment
added 2025/12/31 1:15 a.m.3 views

CVE-2025-68131 CBORDecoder reuse can leak shareable values across decode calls

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Starting in version 3.0.0 and prior to version 5.8.0, whhen a CBORDecoder instance is reused across multiple decode operations, values marked with the shareable tag 28 persist in memory an...

6.9CVSS6.4AI score0.00423EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/19 10:13 p.m.7 views

CVE-2025-68382

Out-of-bounds read CWE-125 allows an unauthenticated remote attacker to perform a buffer overflow CAPEC-100 via the NFS protocol dissector, leading to a denial-of-service DoS through a reliable process crash when handling truncated XDR-encoded RPC messages...

6.5CVSS7.5AI score0.002EPSS
Exploits0References1
CVE
CVE
added 2025/12/19 7:11 a.m.12 views

CVE-2025-66498

Foxit PDF Reader is affected by CVE-2025-66498 due to insufficient bounds checking when parsing U3D data in 3D annotations, leading to out-of-bounds memory access and memory corruption. Connected sources confirm a family of Foxit vulnerabilities and state that updates fix these issues for version...

7.8CVSS6.6AI score0.00175EPSS
Exploits0References1Affected Software2
Packet Storm News
Packet Storm News
added 2025/12/14 12:0 a.m.4 views

One Leak Away: How Pretrained Model Exposure Amplifies Jailbreak Risks in Finetuned LLMs

Finetuning pretrained large language models LLMs has become the standard paradigm for developing downstream applications. However, its security implications remain unclear, particularly regarding whether finetuned LLMs inherit jailbreak vulnerabilities from their pretrained sources. We investigat...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/05 12:0 a.m.4 views

LLM Causality Analysis Framework

A comprehensive framework for multi-level causality analysis in Large Language Models LLMs, enabling systematic investigation of safety mechanisms and misbehavior detection across token, neuron, layer, and representation levels. Includes the whitepaper 2512.04841.pdf titled SoK: A Comprehensive...

7.3AI score
Exploits0
CVE
CVE
added 2025/11/18 12:0 a.m.50 views

CVE-2025-64076

CVE-2025-64076 affects the cbor2 library (Python CBOR) via the C extension decode_definite_long_string() in source/decoder.c. The advisory describes two issues: (1) an integer underflow in chunk processing leads to out-of-bounds reads, potentially triggering resource exhaustion; (2) a missing Py_...

7.5CVSS6.6AI score0.00422EPSS
Exploits1References3Affected Software1
Packet Storm News
Packet Storm News
added 2025/11/15 12:0 a.m.19 views

RulePilot: An LLM-Powered Agent for Security Rule Generation

The real-time demand for system security leads to the detection rules becoming an integral part of the intrusion detection life-cycle. Rule-based detection often identifies malicious logs based on the predefined grammar logic, requiring experts with deep domain knowledge for rule generation...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/14 12:0 a.m.7 views

Retrofit: Continual Learning with Bounded Forgetting for Security Applications

Modern security analytics are increasingly powered by deep learning models, but their performance often degrades as threat landscapes evolve and data representations shift. While continual learning CL offers a promising paradigm to maintain model effectiveness, many approaches rely on full...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-18137

Malware in sbrugna...

9.8CVSS9.2AI score0.01928EPSS
Exploits0References3
Rows per page
Query Builder