Lucene search
+L

368 matches found

attackerkb
attackerkb
added last week6 views

CVE-2026-54002

Kirby is an open-source content management system. Prior to 4.9.4 and 5.4.4, Kirby sites and plugins that use the writer or list fields or call Dom::sanitize, Sane::sanitize, Sane::Html::sanitize, Sane::Svg::sanitize, Sane::Xml::sanitize, Sane::sanitizeFile, or file sanitizeContents with untruste...

8.5CVSS5.5AI score0.00409EPSS
Exploits0References8Affected Software1
osv
osv
added last week2 views

CVE-2026-54002 Kirby: Cross-site scripting (XSS) from incomplete HTML/XML sanitization in `Dom::sanitize()`

Kirby is an open-source content management system. Prior to 4.9.4 and 5.4.4, Kirby sites and plugins that use the writer or list fields or call Dom::sanitize, Sane::sanitize, Sane::Html::sanitize, Sane::Svg::sanitize, Sane::Xml::sanitize, Sane::sanitizeFile, or file sanitizeContents with untruste...

8.5CVSS5.8AI score0.00409EPSS
Exploits0References9
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in sane-backends

A NULL pointer dereferencing in the saneiepsonnetread function in SANE backends before version 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, known as GHSL-2020-075...

5.5CVSS6.3AI score0.00497EPSS
Exploits1References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in sane-backends

A heap buffer overflow in SANE backends before version 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, known as GHSL-2020-080...

8.8CVSS7.8AI score0.03044EPSS
Exploits1References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in sane-backends

A out-of-bounds read in SANE Backends before version 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, known as GHSL-2020-082...

4.3CVSS6.7AI score0.01077EPSS
Exploits1References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in sane-backends

A NULL pointer dereferencing in SANE backends before version 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079...

5.7CVSS6.4AI score0.01041EPSS
Exploits1References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in sane-backends

A out-of-bounds read in SANE backends before version 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, also known as GHSL-2020-083...

4.3CVSS6.1AI score0.01006EPSS
Exploits1References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in sane-backends

A out-of-bounds read in SANE Backends before version 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, also known as GHSL-2020-081...

4.3CVSS6.7AI score0.01204EPSS
Exploits1References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in sane-backends

A heap buffer overflow in SANE backends before version 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, known as GHSL-2020-084...

8CVSS8.1AI score0.01457EPSS
Exploits1References1
nessus
nessus
added 2026/05/11 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: sane-backends (UTSA-2026-017583)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017583 advisory. An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, su...

4.3CVSS5.8AI score0.01006EPSS
Exploits1References4
osv
osv
added 2026/05/06 12:10 a.m.4 views

SUSE-SU-2026:21559-1 Security update for wireshark

This update for wireshark fixes the following issues - CVE-2026-3201: missing limit checks in USB HID protocol dissector's parsereportdescriptor function can lead to memory exhaustion bsc1258907. - CVE-2026-3203: missing length checks in the RF4CE Profile protocol dissector can lead to illegal...

7.8CVSS6.5AI score0.00206EPSS
Exploits34References67
redhatcve
redhatcve
added 2026/05/04 9:49 a.m.8 views

CVE-2026-6531

A flaw was found in Wireshark. The SANE Scanner Access Now Easy protocol dissector contains an infinite loop vulnerability. A local user processing specially crafted SANE protocol traffic, such as opening a malicious capture file, can trigger this flaw, leading to a denial of service DoS in...

5.5CVSS5.7AI score0.00188EPSS
Exploits1References5
susecve
susecve
added 2026/05/01 2:11 a.m.7 views

SUSE CVE-2026-6531

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00188EPSS
Exploits1References4
nvd
nvd
added 2026/04/30 7:16 a.m.7 views

CVE-2026-6531

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS0.00188EPSS
Exploits1References3
osv
osv
added 2026/04/30 7:16 a.m.9 views

UBUNTU-CVE-2026-6531

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00188EPSS
Exploits1References4
alpinelinux
alpinelinux
added 2026/04/30 5:36 a.m.8 views

CVE-2026-6531

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00188EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2026/04/30 5:36 a.m.11 views

CVE-2026-6531 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References2
euvd
euvd
added 2026/04/30 5:36 a.m.6 views

EUVD-2026-26338

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References2
attackerkb
attackerkb
added 2026/04/30 5:36 a.m.5 views

CVE-2026-6531

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References3Affected Software1
cve
cve
added 2026/04/30 5:36 a.m.14 views

CVE-2026-6531

The CVE-2026-6531 entry describes an infinite loop in Wireshark’s SANE protocol dissector that affects Wireshark 4.6.0–4.6.4 and 4.4.0–4.4.14, leading to a denial of service. The vulnerability is rooted in the SANE dissector component, with an availability impact described as HIGH. Connected docu...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder