Lucene search
K

5485 matches found

NVD
NVD
added 2026/05/04 6:16 a.m.12 views

CVE-2026-7731

A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. The affected element is an unknown function of the file getstate.php. The manipulation of the argument GSTATEID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...

6.5CVSS0.00246EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/05/02 6:11 a.m.3 views

CVE-2026-43058

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix pass-by-value structs causing MSAN warnings vidtvtsnullwriteinto and vidtvtspcrwriteinto take their argument structs by value, causing MSAN to report uninit-value warnings. While only vidtvtsnullwriteinto has...

5.8AI score0.00121EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/01 3:56 p.m.34 views

CVE-2026-22165 GPU DDK - UAF read of GLES3Context::psDrawParams and GLES3Context::psMode and UAF read/write of RMJob::apsCCBs

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger a write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable further exploits on the...

0.00346EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/01 2:14 p.m.7 views

EUVD-2026-26553

In the Linux kernel, the following vulnerability has been resolved: counter: rz-mtu3-cnt: do not use struct rzmtu3channel's dev member The counter driver can use HW channels 1 and 2, while the PWM driver can use HW channels 0, 1, 2, 3, 4, 6, 7. The dev member is assigned both by the counter drive...

5.8AI score0.00122EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31740

In the Linux kernel, the following vulnerability has been resolved: counter: rz-mtu3-cnt: do not use struct rzmtu3channel's dev member The counter driver can use HW channels 1 and 2, while the PWM driver can use HW channels 0, 1, 2, 3, 4, 6, 7. The dev member is assigned both by the counter drive...

5.8AI score0.00122EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.52 views

CVE-2026-31717 ksmbd: validate owner of durable handle on reconnect

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the user attempting to reconnect to a durable handle is the same user who originally opened the file. This allows any authenticated user to...

8.8CVSS0.00437EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2026/05/01 6:18 a.m.88 views

cve-deep-dive

Report Bug · Request Feature Table of Contents a...

7.8CVSS5.4AI score0.96775EPSS
Exploits228
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from shared structure members of the dev member being overwritten by multiple child drivers. This coul...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
Redos
Redos
added 2026/04/30 12:0 a.m.5 views

ROS-20260430-73-0012

Vulnerability in golang due to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.1CVSS6AI score0.0029EPSS
Exploits0
NVD
NVD
added 2026/04/28 3:16 a.m.7 views

CVE-2026-7215

A security flaw has been discovered in egtai gmx-vmd-mcp up to 0.1.0. This issue affects the function launchvmdguitool of the file mcpserver.py of the component VMD Launch Handler. The manipulation of the argument structurefile/trajectoryfile results in command injection. The attack may be launch...

7.5CVSS0.01338EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/28 2:0 a.m.7 views

EUVD-2026-25971

A security flaw has been discovered in egtai gmx-vmd-mcp up to 0.1.0. This issue affects the function launchvmdguitool of the file mcpserver.py of the component VMD Launch Handler. The manipulation of the argument structurefile/trajectoryfile results in command injection. The attack may be launch...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 2:0 a.m.4 views

CVE-2026-7215

A security flaw has been discovered in egtai gmx-vmd-mcp up to 0.1.0. This issue affects the function launchvmdguitool of the file mcpserver.py of the component VMD Launch Handler. The manipulation of the argument structurefile/trajectoryfile results in command injection. The attack may be launch...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.9 views

MCP-GMX-VMD 注入漏洞

MCP-GMX-VMD is an integrated tool for molecular dynamics simulation and visualization developed by EgT’s individual developers. Versions of MCP-GMX-VMD 0.1.0 and earlier contained a injection vulnerability. This vulnerability stemmed from incorrect handling of parameters such as structurefile and...

7.5CVSS7.1AI score0.01338EPSS
Exploits0References1
NVD
NVD
added 2026/04/27 12:16 p.m.7 views

CVE-2026-5942

Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program...

5.5CVSS0.00182EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:0 a.m.6 views

CVE-2026-5942

Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program...

5.5CVSS5.2AI score0.00182EPSS
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:0 a.m.6 views

CVE-2026-5943

Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during page information...

7.8CVSS5.2AI score0.00181EPSS
Exploits0References2Affected Software2
EUVD
EUVD
added 2026/04/27 11:0 a.m.7 views

EUVD-2026-25829

Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during page information...

7.8CVSS5.2AI score0.00181EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/27 11:0 a.m.9 views

EUVD-2026-25827

Parsing logic flaws cause non-signature data to be misidentified as valid signatures when processing malformed form field hierarchies, leading to invalid memory writes and program crashes during internal data structure construction...

7.8CVSS5.2AI score0.00169EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.10 views

PT-2026-35404

Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program...

5.5CVSS5.2AI score0.00182EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.8 views

PT-2026-35403

Parsing logic flaws cause non-signature data to be misidentified as valid signatures when processing malformed form field hierarchies, leading to invalid memory writes and program crashes during internal data structure construction...

7.8CVSS5.1AI score0.00169EPSS
Exploits0References2
Rows per page
Query Builder