Lucene search
+L

778 matches found

CVE
CVE
added 2026/07/09 9:4 p.m.14 views

CVE-2026-57019

CVE-2026-57019 affects Junos OS on MX Series. An issue in the Packet Forwarding Engine (pfe) due to improper validation of a specified quantity in input can allow an unauthenticated adjacent attacker to cause a Denial-of-Service by triggering an FPC major error and a reset, impacting traffic unti...

7.1CVSS6AI score0.00269EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/07/06 9:16 p.m.6 views

CVE-2026-25268

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS0.00072EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/06 8:9 p.m.6 views

CVE-2026-25268

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS6AI score0.00072EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/06 8:9 p.m.37 views

CVE-2026-25268 Stack-based Buffer Overflow in WLAN Host

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS0.00072EPSS
Exploits0References1
CVE
CVE
added 2026/07/06 8:9 p.m.28 views

CVE-2026-25268

The CVE-2026-25268 issue is a stack-based buffer overflow in WLAN Host caused by memory corruption when processing invalid HT40 channel layouts during dynamic channel switching. Affects WLAN Host with a Local attack vector, requiring Low privileges and no user interaction, and with a changed scop...

8.8CVSS6AI score0.00072EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/07/06 8:9 p.m.6 views

EUVD-2026-41932

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS6AI score0.00072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/07/06 1:58 p.m.6 views

CVE-2026-55698

A flaw was found in pnpm, a package manager. This vulnerability allows a remote attacker to achieve arbitrary code execution by committing a specially crafted package-manager lockfile pnpm-lock.yaml to a repository. When pnpm is executed, it trusts an already resolved packageManagerDependencies...

8.8CVSS6.6AI score0.00193EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/07/06 12:0 a.m.14 views

PT-2026-55994

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon affected versions not specified Description Memory corruption occurs when processing invalid HT40 channel layouts during dynamic channel switching operations. HT40 refers to a High Throughput mode in wireless networking tha...

8.8CVSS6.1AI score0.00072EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2026/07/03 6:13 a.m.7 views

CVE-2026-11856

Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...

9.8CVSS6AI score0.01064EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:13 a.m.2 views

dm cache: fix dirty mapping checking in passthrough mode switching

...

5.5CVSS6.1AI score0.00176EPSS
Exploits0
EUVD
EUVD
added 2026/06/26 11:34 p.m.10 views

EUVD-2026-39484

pnpm: Project env lockfile can short-circuit package-manager resolution and execute lockfile-selected pnpm bytes...

8.8CVSS5.8AI score0.00193EPSS
Exploits1References2
CVE
CVE
added 2026/06/25 4:43 p.m.43 views

CVE-2026-55698

pnpm advisory (CVE-2026-55698) affects pnpm by allowing a crafted env lockfile in pnpm-lock.yaml to bypass fresh package-manager resolution and cause installation of bytes selected by the lockfile state. The issue occurs prior to 10.34.2 and 11.5.3, which have fixed the vulnerability. The vulnera...

8.8CVSS6AI score0.00193EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.15 views

PT-2026-52523

Name of the Vulnerable Software and Affected Versions pnpm versions prior to 10.34.2 pnpm versions 11.0.0 through 11.5.2 Description pnpm can persist package-manager bootstrap metadata in the first YAML document of the pnpm-lock.yaml file. The issue occurs when pnpm incorrectly trusts an already...

8.8CVSS6.5AI score0.00193EPSS
Exploits1References10
OSV
OSV
added 2026/06/24 8:0 a.m.8 views

CURL-CVE-2026-11856 cross-origin Digest auth state leak

Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...

9.8CVSS5.9AI score0.01064EPSS
Exploits1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix ref leak when switching zones When switching zones or network namespaces without performing a ct clear between them, a reference to the old ct entry is still leaked. This occurs because tcfctskbnfctcached...

5.5CVSS6.1AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2026/06/18 7:29 p.m.29 views

CVE-2026-56099

OpenBSD before commit 6a23123 (2026-06-18) contains an out-of-bounds read in sys/netmpls/mpls_input.c:mpls_do_error, allowing remote disclosure of kernel stack memory by crafting MPLS frames with 16 labels and no Bottom-of-Stack bit. Affected component is the MPLS input handling path; root cause ...

6.9CVSS5.3AI score0.00423EPSS
Exploits2References5Affected Software1
The Hacker News
The Hacker News
added 2026/06/09 11:30 a.m.22 views

The Hidden Security Risk in Modern Networks: The Work Between Tools

Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort. But the same challenges persist. Outages still last hours, causing significant...

5.8AI score
Exploits0
NVD
NVD
added 2026/06/08 3:16 p.m.16 views

CVE-2026-43974

Unexpected Status Code or Return Value vulnerability in ninenines gun gunhttp module allows a malicious HTTP server to force the client into raw protocol mode via an unsolicited 101 Switching Protocols response. In gunhttp:handleinform/8, when a 101 Switching Protocols response is received over...

8.7CVSS0.00381EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.16 views

PT-2026-47300

Name of the Vulnerable Software and Affected Versions gun versions 2.0.0 through 2.3.x Description An issue in the gun http module allows a malicious HTTP server to force a client into raw protocol mode by sending an unsolicited 101 Switching Protocols response. In the handle inform/8 function, t...

8.7CVSS5.6AI score0.00381EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.13 views

Gun 安全漏洞

Gun is an open-source Erlang HTTP client developed by Nine Nines that supports HTTP/1.1, HTTP/2, and WebSocket. Versions of Gun from 2.0.0 to 2.4.0 contained security vulnerabilities. These vulnerabilities stemmed from unexpected status codes or return values in the gunhttp module, which could...

8.7CVSS5.3AI score0.00381EPSS
Exploits0References2
Rows per page
Query Builder