Lucene search
K

176 matches found

Debian CVE
Debian CVE
added 2026/06/25 2:34 p.m.5 views

CVE-2026-57437

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source document alive for garbage collection. If an XPathContext outlived its document and the document was collected, evaluating an XPath expression...

6.3CVSS5.9AI score0.00312EPSS
Exploits0
OSV
OSV
added 2026/06/19 9:17 p.m.6 views

UBUNTU-CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/16 1:45 p.m.13 views

EUVD-2026-32912

pypdf: Manipulated XMP metadata streams can exhaust RAM...

6.9CVSS5.1AI score0.0013EPSS
Exploits0References4
OSV
OSV
added 2026/06/05 3:18 p.m.6 views

JLSEC-2026-569

OpenCV is an Open Source Computer Vision Library. Versions 4.10.0 and 4.11.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the vulnerability...

7.5CVSS5.9AI score0.00371EPSS
Exploits1References4
OSV
OSV
added 2026/06/04 12:21 p.m.5 views

MINI-F268-FG87-9FFF

Bulletin has no description...

6.1CVSS5.7AI score0.00178EPSS
Exploits0
OSV
OSV
added 2026/06/04 9:59 a.m.4 views

MINI-4WV9-HMFM-CF93

Bulletin has no description...

6.1CVSS5.7AI score0.00178EPSS
Exploits0
OSV
OSV
added 2026/05/21 1:9 p.m.12 views

CLSA-2026-1779368985 opensc: Fix of CVE-2023-40660

CVE-2023-40660: fix potential PIN bypass when card tracks its own login state...

6.6CVSS6.8AI score0.00925EPSS
Exploits0References1
OSV
OSV
added 2026/05/12 3:54 p.m.5 views

MINI-22XG-2X55-6H59

Bulletin has no description...

9.8CVSS5.7AI score0.00739EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.13 views

PJSIP 输入验证错误漏洞

PJSIP is an open-source, free and open-source multimedia communication library developed in C language. It implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Versions of PJSIP 2.16 and earlier contained a vulnerability related to input validation errors. This...

9.3CVSS5.9AI score0.00279EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.8 views

PT-2026-35059

Name of the Vulnerable Software and Affected Versions PJSIP versions prior to 2.17 Description An integer overflow occurs in the media stream buffer size calculation when processing Session Description Protocol SDP with asymmetric ptime configuration. This overflow can lead to an undersized buffe...

9.3CVSS5.7AI score0.00279EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.10 views

PJSIP 安全漏洞

PJSIP is an open-source, free and open-source multimedia communication library developed in C language. It implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Versions of PJSIP 2.16 and earlier contained security vulnerabilities, which stemmed from insufficient buffer...

8.8CVSS5.9AI score0.00224EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/03/31 11:48 p.m.7 views

@openinc/parse-server-opendash (>=4.0.0 <=4.0.10) potentially affected by CVE-2026-34532 via parse-server (>=9.6.0-alpha.37 <=9.6.1)

parse-server NPM version =9.6.0-alpha.37, =4.0.0, =4.0.10 Source cves: CVE-2026-34532 Source advisory: OSV:GHSA-VPJ2-QQ7W-5QQ6...

9.1CVSS5.8AI score0.00277EPSS
Exploits0
EUVD
EUVD
added 2026/03/31 3:36 p.m.4 views

EUVD-2026-17494

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap out-of-bounds read vulnerability exists in PJSIP's VP9 RTP unpacketizer that occurs when parsing crafted VP9 Scalability Structure SS data. Insufficient bounds checking on the payload...

6.9CVSS5.8AI score0.00405EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities; these vulnerabilities were caused by heap buffer overflows when processing specially crafted ICC configuration files,...

6.2CVSS6AI score0.00116EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities. These vulnerabilities stemmed from the handling of specially crafted ICC configuration files, where invalid enumeratio...

6.2CVSS5.9AI score0.00156EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.12 views

iccDEV 缓冲区错误漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained a buffer error vulnerability, which was caused by a heap buffer overflow in the icAnsiToUtf8 function during XML conversion...

6.2CVSS6.1AI score0.00156EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.10 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities; these vulnerabilities were caused by specially crafted ICC configuration files that could lead to stack buffer overflo...

6.2CVSS6AI score0.00156EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.12 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities, which were caused by an implicit conversion from signed integers to sizet, resulting in undefined behavior...

6.2CVSS5.9AI score0.00159EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.13 views

iccDEV 代码问题漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained code-related vulnerabilities. These vulnerabilities stemmed from specially crafted ICC configuration files that could trigger calls to null...

6.2CVSS5.9AI score0.002EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2026/03/25 10:17 a.m.8 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References22
Rows per page
Query Builder