Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34021 matches found

CNNVD
CNNVDadded 2026/03/07 12:0 a.m.3 views

Tenda FH451 安全漏洞

The Tenda FH451 is a router produced by the Chinese company Tenda. Version 1.0.0.9 of the Tenda FH451 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters “wanmode” and “PPPOEPassword” in the file/goform/AdvSetWan, which may lead to a stack buffer...

9CVSS7.7AI score0.00563EPSS
Exploits1References5
CNNVD
CNNVDadded 2026/03/07 12:0 a.m.4 views

cpp-httplib 安全漏洞

cpp-httplib is a C++ library developed by Yhirose, which includes servers and clients for HTTP/HTTPS protocols. Versions of cpp-httplib prior to 0.37.0 contained security vulnerabilities. These vulnerabilities stemmed from stack overflows that occurred when the std::regex library was used to pars...

5.9CVSS5.8AI score0.00602EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/03/07 12:0 a.m.3 views

Tenda FH451 安全漏洞

The Tenda FH451 is a router produced by the Chinese company Tenda. Version 1.0.0.9 of the Tenda FH451 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters mitlinktype/PPPOEPassword in the file/goform/QuickIndex, which may lead to a stack buffer overflo...

9CVSS7.7AI score0.00594EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/03/07 12:0 a.m.7 views

PT-2026-23887

Name of the Vulnerable Software and Affected Versions Tenda FH451 version 1.0.0.9 Description A stack-based buffer overflow exists in the function sub 3C434 of the file /goform/AdvSetWan. Manipulation of the wanmode/PPPOEPassword argument can trigger this issue. The attack can be initiated remote...

9CVSS7.6AI score0.00563EPSS
Exploits1References11
Positive Technologies
Positive Technologiesadded 2026/03/07 12:0 a.m.2 views

PT-2026-23867

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.37.0 Description The software uses std::regex libstdc++ to parse RFC 5987 encoded filename values in multipart Content-Disposition headers. A crafted filename parameter can cause uncontrolled stack growth due to...

8.7CVSS5.8AI score0.00602EPSS
Exploits6References34
Positive Technologies
Positive Technologiesadded 2026/03/07 12:0 a.m.6 views

PT-2026-23888

Name of the Vulnerable Software and Affected Versions Tenda FH451 version 1.0.0.9 Description A stack-based buffer overflow exists in the formQuickIndex function of the /goform/QuickIndex file. Manipulation of the mit linktype/PPPOEPassword argument can trigger this issue, allowing for remote...

9CVSS7.7AI score0.00594EPSS
Exploits1References11
RedhatCVE
RedhatCVEadded 2026/03/06 2:10 p.m.4 views

CVE-2026-29062

A flaw was found in jackson-core. A user could exploit this vulnerability by supplying a specially crafted JSON document with excessive nesting. This bypasses a security constraint designed to limit nesting depth, which can cause a system crash StackOverflowError when the document is processed...

8.7CVSS5.7AI score0.00489EPSS
Exploits0References6
OSV
OSVadded 2026/03/06 12:41 p.m.3 views

OESA-2026-1501 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7.5CVSS6AI score0.00284EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 12:41 p.m.1 views

OESA-2026-1500 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7.5CVSS6AI score0.00284EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 12:41 p.m.2 views

OESA-2026-1498 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7.5CVSS6AI score0.00284EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 12:41 p.m.3 views

OESA-2026-1497 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7.5CVSS6AI score0.00284EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 11:37 a.m.3 views

SUSE-SU-2026:20657-1 Security update for libxslt, libxml2

This update for libxslt, libxml2 fixes the following issues: libxml2: - CVE-2026-0990: call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI bsc1256807, bsc1256811 - CVE-2026-0992: excessive resource consumption when processing XML catalogs due to...

6.2CVSS6.2AI score0.00725EPSS
Exploits0References21
NVD
NVDadded 2026/03/06 8:16 a.m.9 views

CVE-2026-29062

jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. From version 3.0.0 to before version 3.1.0, the UTF8DataInputJsonParser, which is used when parsing from a java.io.DataInput source, bypasses the maxNestingDepth constrai...

8.7CVSS0.00489EPSS
Exploits0References3
OSV
OSVadded 2026/03/06 8:16 a.m.8 views

UBUNTU-CVE-2026-29062

jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. From version 3.0.0 to before version 3.1.0, the UTF8DataInputJsonParser, which is used when parsing from a java.io.DataInput source, bypasses the maxNestingDepth constrai...

8.7CVSS5.7AI score0.00489EPSS
Exploits0References5
NVD
NVDadded 2026/03/06 7:16 a.m.3 views

CVE-2026-29068

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, there is a stack buffer overflow vulnerability when pjmedia-codec parses an RTP payload contain more frames than the caller-provided frames can hold. This issue has been patched in version 2.17...

8.7CVSS0.00314EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 7:16 a.m.5 views

ALPINE-CVE-2026-29068

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, there is a stack buffer overflow vulnerability when pjmedia-codec parses an RTP payload contain more frames than the caller-provided frames can hold. This issue has been patched in version 2.17...

7.5CVSS5.6AI score0.00314EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/06 7:14 a.m.4 views

CVE-2026-29062

jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. From version 3.0.0 to before version 3.1.0, the UTF8DataInputJsonParser, which is used when parsing from a java.io.DataInput source, bypasses the maxNestingDepth constrai...

8.7CVSS5.7AI score0.00489EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/03/06 6:36 a.m.16 views

CVE-2026-29068

PJSIP is affected by a stack buffer overflow in the pjmedia-codec RTP payload parser when a payload contains more frames than the caller-provided frames can hold. This impacts versions prior to 2.17. The vulnerability, with a CVSS 4.0 base score of 8.7 (Network attack vector, no user interaction,...

8.7CVSS6AI score0.00314EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/03/06 6:36 a.m.26 views

CVE-2026-29068 PJSIP: Stack buffer overflow in Opus codec parser

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, there is a stack buffer overflow vulnerability when pjmedia-codec parses an RTP payload contain more frames than the caller-provided frames can hold. This issue has been patched in version 2.17...

8.7CVSS0.00314EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/03/06 6:36 a.m.2 views

CVE-2026-29068

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, there is a stack buffer overflow vulnerability when pjmedia-codec parses an RTP payload contain more frames than the caller-provided frames can hold. This issue has been patched in version 2.17...

8.7CVSS6AI score0.00314EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder