Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в libonig

Oniguruma, as used in PHP 7.3.x and other products, has a heap-based buffer over-read issue in the strlowercasematch function in regexec.c...

7.5CVSS6.8AI score0.00232EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-8872

Malware in sbrugna...

7.5CVSS6.5AI score0.00232EPSS
Exploits0References12
SUSE CVE
SUSE CVEadded 2023/02/15 4:6 a.m.2 views

SUSE CVE-2019-19246

Oniguruma through 6.9.3, as used in PHP 7.3.x and other products, has a heap-based buffer over-read in strlowercasematch in regexec.c...

7.5CVSS9.8AI score0.00232EPSS
Exploits0References11
BDU FSTEC
BDU FSTECadded 2021/07/13 12:0 a.m.3 views

The vulnerability of the `str_lower_case_match` component in the Oniguruma regular expression library, which involves reading data beyond the allowed buffer limits, allows attackers to cause service interruptions.

The vulnerability of the strlowercasematch component in the Oniguruma regular expression library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS6.7AI score0.00232EPSS
Exploits0References12Affected Software5
RedHat Linux
RedHat Linuxadded 2020/12/01 12:5 p.m.2 views

oniguruma: Heap-based buffer overflow in str_lower_case_match in regexec.c

A vulnerability was found in Oniguruma, where improper bounds checking in strlowercasematch within regexec.c can cause a heap-based buffer overflow, a remote attacker could exploit this flaw to crash the application or, in certain scenarios, execute arbitrary code. This occurs when the applicatio...

7.5CVSS7.7AI score0.00232EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2019/12/05 12:0 a.m.53 views

Debian DLA-2020-1 : libonig security update

Several vulnerabilities were discovered in the Oniguruma regular expressions library, notably used in PHP mbstring. CVE-2019-19012 An integer overflow in the searchinrange function in regexec.c leads to an out-of-bounds read, in which the offset of this read is under the control of an attacker...

9.8CVSS7.5AI score0.14783EPSS
Exploits4References5
CNVD
CNVDadded 2019/11/26 12:0 a.m.1 views

Oniguruma Heap Buffer Overflow Vulnerability

Oniguruma is an open source regular expression library. A buffer error vulnerability exists in strlowercasematch in the regexec.c file in Oniguruma versions 6.9.3 and earlier used in PHP version 7.3.x and other products. The vulnerability stems from a web-based system or product that performs...

7.5CVSS9.7AI score0.00232EPSS
Exploits0References1
OSV
OSVadded 2019/11/25 5:15 p.m.1 views

DEBIAN-CVE-2019-19246

Oniguruma through 6.9.3, as used in PHP 7.3.x and other products, has a heap-based buffer over-read in strlowercasematch in regexec.c...

7.5CVSS6.8AI score0.00232EPSS
Exploits0References1
CVE
CVEadded 2019/11/25 4:16 p.m.373 views

CVE-2019-19246

CVE-2019-19246: Oniguruma (used in PHP 7.3.x and others) has a heap-based buffer over-read in str_lower_case_match (regexec.c). Public advisories confirm the issue affects Oniguruma up to 6.9.3 and can lead to denial of service or code execution when processing crafted regex inputs. Affected soft...

7.5CVSS8.5AI score0.00232EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder