Lucene search
+L

66 matches found

Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.5 views

PT-2026-57869

Name of the Vulnerable Software and Affected Versions Lorex 2K Indoor Wi-Fi Security Camera affected versions not specified Description Network-adjacent attackers can execute arbitrary code with root privileges on affected installations without requiring authentication. The issue occurs during th...

7.5CVSS7.2AI score0.0026EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/29 10:56 p.m.9 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00502EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/29 9:14 p.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00502EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/29 8:26 p.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00502EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/29 4:27 p.m.9 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00502EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2026/05/08 12:0 a.m.9 views

CVE-2026-29974

An issue was discovered in kosma minmea 0.3.0. The minmeascan functions format specifier copies NMEA field data to a caller-provided buffer without a size parameter. Applications using minmeascan on untrusted input are vulnerable to a stack buffer overflow...

6.1AI score0.00307EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.17 views

PT-2026-39143

Name of the Vulnerable Software and Affected Versions kosma minmea version 0.3.0 Description A stack buffer overflow exists in the minmea scan function. The format specifier within this function copies NMEA field data into a buffer provided by the caller without utilizing a size parameter. This c...

7.5CVSS6AI score0.00307EPSS
Exploits0References5
OSV
OSV
added 2026/04/20 9:16 p.m.3 views

UBUNTU-CVE-2026-5450

Calling the scanf family of functions with a %mc malloc'd character match in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow...

9.8CVSS6.1AI score0.00502EPSS
Exploits1References3
OSV
OSV
added 2026/04/09 3:36 p.m.16 views

CLSA-2026-1775749004 ImageMagick: Fix of 4 CVEs

CVE-2026-25968: stack buffer overflow in MSL image-processing language via WriteMSLImage recursion - CVE-2026-25897: out-of-bounds heap write in SUN decoder on 32-bit systems via integer overflow in pixel buffer allocation - CVE-2025-53014: out-of-bounds read in InterpretImageFilename when...

9.8CVSS7.2AI score0.00792EPSS
Exploits2References1
OSV
OSV
added 2026/01/12 1:29 p.m.7 views

CLSA-2026-1768224570 Fix CVE(s): CVE-2025-1153

SECURITY UPDATE: einfo calls with %F specifier do not always exit - debian/patches/CVE-2025-1153.patch: introduce fatal function that always exits, replacing einfo calls with %F specifier to prevent program continuation after fatal errors - CVE-2025-1153...

5.9CVSS6.4AI score0.01331EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:33 a.m.9 views

CVE-2017-18694

An issue was discovered on Samsung mobile devices with software through 2016-10-25 Exynos5 chipsets. Attackers can read kernel addresses in the log because an incorrect format specifier is used. The Samsung ID is SVE-2016-7551 January 2017...

5.3CVSS6.9AI score0.0034EPSS
Exploits0References1
OSV
OSV
added 2026/01/01 6:35 p.m.6 views

CVE-2025-68619 Signal K Server Vulnerable to Remote Code Execution via Malicious npm Package

Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 of the appstore interface allow administrators to install npm packages through a REST API endpoint. While the endpoint validates that the package name exists in the npm registry as a known plugi...

8.6CVSS7.6AI score0.00645EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2017-9785

Malware in sbrugna...

5.3CVSS5.6AI score0.0034EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-1150

Malware in sbrugna...

5CVSS6.4AI score0.0176EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-5452

Malware in sbrugna...

5CVSS7.3AI score0.04071EPSS
Exploits1References32
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-1813

Malware in sbrugna...

7.5CVSS7.4AI score0.01361EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-6478

Malware in sbrugna...

6.6CVSS6.4AI score0.00421EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-1000052

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fmtlib version prior to version 4.1.0 before commit 0555cea5fc0bf890afe0071a558e44625a34ba85 contains a Memory corruption SIGSEGV, CWE-134 vulnerability in...

7.5CVSS7.3AI score0.01361EPSS
Exploits1References2
SUSE Linux
SUSE Linux
added 2025/07/24 9:10 a.m.5 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-53014: Fixed an off-by-one error may cause an out-of-bounds memory access bsc1246530 CVE-2025-53019: Fixed format specifiers in a filename template may cause a memory leak bsc1246534 CVE-2025-53101: Fixed input manipulation may lead...

8.3CVSS6.5AI score0.00792EPSS
Exploits2References12
Positive Technologies
Positive Technologies
added 2025/04/02 12:0 a.m.11 views

PT-2025-22199

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the trace event verifier. The verifier checks the formats of trace events to ensure they do not point to memory that is...

5.5CVSS6.6AI score0.0016EPSS
Exploits0
Rows per page
Query Builder