Lucene search
K

74148 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/26 10:30 p.m.1 views

CVE-2026-4903

A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. Th...

9CVSS8.1AI score0.05461EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/26 10:30 p.m.2 views

CVE-2026-4902

A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit is n...

9CVSS8.1AI score0.00632EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/26 10:30 p.m.21 views

CVE-2026-4902 Tenda AC5 POST Request addressNat fromAddressNat memory corruption

A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit is n...

9CVSS0.00632EPSS
Exploits1References5
NVD
NVD
added 2026/03/26 10:16 p.m.3 views

CVE-2025-12805

A flaw was found in Red Hat OpenShift AI RHOAI llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user i...

8.1CVSS0.00383EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/26 9:48 p.m.2 views

CVE-2025-12805

A flaw was found in Red Hat OpenShift AI RHOAI llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user i...

8.1CVSS7AI score0.00383EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/26 9:48 p.m.3 views

CVE-2025-12805 Llama-stack-k8s-operator: llama stack service exposed across namespaces due to missing networkpolicy

A flaw was found in Red Hat OpenShift AI RHOAI llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user i...

8.1CVSS7AI score0.00383EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/26 9:48 p.m.24 views

CVE-2025-12805 Llama-stack-k8s-operator: llama stack service exposed across namespaces due to missing networkpolicy

A flaw was found in Red Hat OpenShift AI RHOAI llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user i...

8.1CVSS0.00383EPSS
Exploits1References4
CVE
CVE
added 2026/03/26 9:48 p.m.15 views

CVE-2025-12805

CVE-2025-12805 describes a flaw in Red Hat OpenShift AI (RHOAI) llama-stack-operator where Llama Stack services deployed in different namespaces can be accessed via direct network requests because no NetworkPolicy restricts the llama-stack service endpoint. This allows a user in one namespace to ...

8.1CVSS7AI score0.00383EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/03/26 8:16 p.m.5 views

CVE-2026-33532

yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...

4.3CVSS0.00469EPSS
Exploits1References4
OSV
OSV
added 2026/03/26 8:16 p.m.2 views

DEBIAN-CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

4.7CVSS5.5AI score0.00128EPSS
Exploits0References1
NVD
NVD
added 2026/03/26 8:16 p.m.2 views

CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS0.00128EPSS
Exploits0References1
OSV
OSV
added 2026/03/26 8:16 p.m.5 views

DEBIAN-CVE-2026-33532

yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...

4.3CVSS5.7AI score0.00469EPSS
Exploits1References1
OSV
OSV
added 2026/03/26 8:16 p.m.4 views

UBUNTU-CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS6AI score0.00128EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/26 8:16 p.m.10 views

CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS6AI score0.00128EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/26 8:16 p.m.7 views

CVE-2026-33532

yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...

4.3CVSS5.9AI score0.00469EPSS
Exploits1References5
OSV
OSV
added 2026/03/26 8:16 p.m.7 views

UBUNTU-CVE-2026-33532

yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...

4.3CVSS6AI score0.00469EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/03/26 7:57 p.m.8 views

CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS6AI score0.00128EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/03/26 7:57 p.m.4 views

CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS5.5AI score0.00128EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/03/26 7:57 p.m.2 views

CVE-2026-33536

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...

5.1CVSS6.1AI score0.00128EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/26 7:49 p.m.25 views

CVE-2026-33532 yaml is vulnerable to Stack Overflow via deeply nested YAML collections

yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...

4.3CVSS0.00469EPSS
Exploits1References4
Rows per page
Query Builder