Lucene search
K

509 matches found

Snyk
Snyk
added 2026/04/16 1:30 a.m.9 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write through the MakeTable in the decompression routine when bit-length values from a crafted firmware blob exceed the expected range, leading to stack memory corruption in the Count array and related decode tables. An...

8.8CVSS5.5AI score
Exploits0References2
OSV
OSV
added 2026/04/01 9:17 p.m.3 views

DEBIAN-CVE-2026-34544

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.8, a crafted B44 or B44A EXR file can cause an out-of-bounds write in any application that decodes it via...

7.3CVSS5.5AI score0.00244EPSS
Exploits1References1
OSV
OSV
added 2026/03/27 2:7 p.m.4 views

OESA-2026-1762 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/26 8:47 p.m.2 views

CVE-2026-33623 PinchTab: OS Command Injection via Profile Name in Windows Cleanup Routine Enables Arbitrary Command Execution

PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. PinchTab v0.8.4 contains a Windows-only command injection issue in the orphaned Chrome cleanup path. When an instance is stopped, the Windows cleanup routine builds a PowerShell -Command string using a...

6.7CVSS6.3AI score0.02904EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/26 8:47 p.m.25 views

CVE-2026-33623 PinchTab: OS Command Injection via Profile Name in Windows Cleanup Routine Enables Arbitrary Command Execution

PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. PinchTab v0.8.4 contains a Windows-only command injection issue in the orphaned Chrome cleanup path. When an instance is stopped, the Windows cleanup routine builds a PowerShell -Command string using a...

6.7CVSS0.02904EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:6 p.m.2 views

CVE-2026-22321

A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain...

5.3CVSS6.2AI score0.00366EPSS
Exploits0References1
OSV
OSV
added 2026/03/24 7:46 p.m.4 views

GHSA-P8MM-644P-PHMH PinchTab: OS Command Injection via Profile Name in Windows Cleanup Routine Enables Arbitrary Command Execution

Summary PinchTab v0.8.4 contains a Windows-only command injection issue in the orphaned Chrome cleanup path. When an instance is stopped, the Windows cleanup routine builds a PowerShell -Command string using a needle derived from the profile path. In v0.8.4, that string interpolation escapes...

6.7CVSS6.7AI score0.02904EPSS
Exploits1References4
CVE
CVE
added 2026/03/20 3:32 p.m.14 views

CVE-2026-4488

The CVE-2026-4488 entry concerns UTT HiPER 1250GW (up to 3.2.7-210907-180535). The vulnerability is in the strcpy usage within the file /goform/setSysAdm, where manipulation of the GroupName argument leads to a buffer overflow. This allows a remote attacker to potentially exploit the flaw, and pu...

9CVSS7.8AI score0.00507EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/19 12:30 a.m.3 views

SUSE CVE-2025-71270

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.6AI score0.00121EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/19 12:0 a.m.7 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in the analyzestring function of the infocmp -i routine. An attacker can execute unauthorized code, cause denial of service, corrupt data, or access sensitive information by supplying specially crafted input ...

9.8CVSS6AI score0.00414EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/18 9:30 a.m.4 views

EUVD-2026-12790

A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain...

5.3CVSS6.2AI score0.00366EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/28 1:56 a.m.10 views

CVE-2026-27838

wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check a cache before calling self.getobject. In versions up to and including 2.4, ache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API...

3.5CVSS6AI score0.00245EPSS
Exploits1References1
CVE
CVE
added 2026/02/27 12:33 a.m.16 views

CVE-2026-25085

Copeland XWEB Pro prior to 1.12.1 is affected by an authentication bypass. The issue stems from the authentication routine returning an unexpected value that is later treated as legitimate, bypassing authentication controls. Affected software is Copeland XWEB Pro (version 1.12.1 and earlier). The...

9.8CVSS5.4AI score0.00463EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/27 12:33 a.m.1 views

CVE-2026-25085

A vulnerability exists in Copeland XWEB Pro version 1.12.1 and prior, in which an unexpected return value from the authentication routine is later on processed as a legitimate value, resulting in an authentication bypass...

9.8CVSS5.8AI score0.00463EPSS
Exploits0References4
NVD
NVD
added 2026/02/26 11:16 p.m.14 views

CVE-2026-27838

wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check a cache before calling self.getobject. In versions up to and including 2.4, ache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API...

3.5CVSS0.00245EPSS
Exploits1References2
OSV
OSV
added 2026/02/26 10:15 p.m.4 views

GHSA-42CR-W2GR-M54Q wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data

Summary Five routine detail action endpoints check a cache before calling self.getobject. Cache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API, an attacker can retrieve the cached response for the same PK without any ownership...

3.1CVSS5.6AI score0.00245EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/26 10:15 p.m.8 views

EUVD-2026-8906

wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data...

3.1CVSS5.3AI score0.00245EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/02/26 10:15 p.m.8 views

wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data

Summary Five routine detail action endpoints check a cache before calling self.getobject. Cache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API, an attacker can retrieve the cached response for the same PK without any ownership...

3.5CVSS5.5AI score0.00245EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/26 10:4 p.m.3 views

CVE-2026-27838 wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data

wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check a cache before calling self.getobject. In versions up to and including 2.4, ache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API...

3.1CVSS5.9AI score0.00245EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/26 10:4 p.m.19 views

CVE-2026-27838 wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data

wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check a cache before calling self.getobject. In versions up to and including 2.4, ache keys are scoped only by pk — no user ID is included. When a victim has previously accessed their routine via the API...

3.1CVSS0.00245EPSS
Exploits1References2
Rows per page
Query Builder