Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.11 views

PT-2026-47118

singlevar in lparser.c in Lua from including 5.4.0 up to excluding 5.4.4 lacks a certain luaK exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code...

5.7AI score
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.6 views

PT-2025-26588 · Unknown · Notepadnext

Name of the Vulnerable Software and Affected Versions: NotepadNext versions through v0.11 Description: The issue is an Out-of-bounds Read vulnerability in the NotepadNext Lua Parser Module, specifically affecting the singlevar function in lparser.c. This vulnerability can lead to a heap-based...

5.1CVSS6.3AI score0.00153EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/07/26 12:0 a.m.4 views

The vulnerability of the implementation of the singlevar() function in the Lua interpreter allows a hacker to execute arbitrary code.

The vulnerability of the singlevar function implementation in Lua interpreters is related to a buffer out-of-bound read error in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

9.4CVSS8.4AI score0.02919EPSS
Exploits1References7Affected Software2
Microsoft CVE
Microsoft CVE
added 2022/04/15 7:0 a.m.1 views

singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.

...

9.1CVSS8AI score0.02919EPSS
Exploits1
OSV
OSV
added 2022/04/08 6:15 a.m.3 views

ALPINE-CVE-2022-28805

singlevar in lparser.c in Lua from including 5.4.0 up to excluding 5.4.4 lacks a certain luaKexp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code...

9.1CVSS7.1AI score0.02919EPSS
Exploits1References1
OSV
OSV
added 2022/04/08 6:15 a.m.3 views

UBUNTU-CVE-2022-28805

singlevar in lparser.c in Lua from including 5.4.0 up to excluding 5.4.4 lacks a certain luaKexp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code...

9.1CVSS7.3AI score0.02919EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/02/15 12:0 a.m.1 views

PT-2022-3822 · Lua +5 · Lua +5

Name of the Vulnerable Software and Affected Versions: Lua versions 5.4.0 through 5.4.4 Description: The issue is related to a heap-based buffer over-read in the singlevar function in lparser.c of Lua. This might affect systems that compile untrusted Lua code, potentially allowing a remote attack...

9.4CVSS8.7AI score0.02919EPSS
Exploits2References42
Rows per page
Query Builder