Lucene search
+L

135 matches found

NVD
NVD
added 5 days ago7 views

CVE-2026-57433

Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SXHOOK record. retrievehookcommon reads a signed 32-bit item count from an SXHOOK record and calls avextend with that count plus one. A count of I32MAX wraps the addition to a negative value. A...

9.8CVSS0.00345EPSS
Exploits0References2
CVE
CVE
added 5 days ago25 views

CVE-2026-57433

CVE-2026-57433 affects Perl’s Storable before 3.41. A signed 32-bit item count read from an SX_HOOK record is added to one and then fed to av_extend; when the count equals I32_MAX the addition overflows to negative, causing av_extend to panic during thaw/retrieve and terminate deserialization. Mu...

9.8CVSS6.2AI score0.00345EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 5 days ago39 views

CVE-2026-57433 Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SX_HOOK record

Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SXHOOK record. retrievehookcommon reads a signed 32-bit item count from an SXHOOK record and calls avextend with that count plus one. A count of I32MAX wraps the addition to a negative value. A...

0.00345EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 5 days ago7 views

PT-2026-57824

Name of the Vulnerable Software and Affected Versions Storable versions prior to 3.41 Description A signed integer overflow occurs during the deserialization of a specially crafted SX HOOK record. The function retrieve hook common reads a signed 32-bit item count and passes it to av extend after...

9.8CVSS6.2AI score0.00345EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/04/20 3:18 a.m.5 views

CVE-2026-32961

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in packet data processing of sxsmpd. Processing a crafted packet may cause a temporary denial-of-service DoS condition...

6.9CVSS6AI score0.00566EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/31 12:0 a.m.27 views

VulnCheck KEV: CVE-2025-55748

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 4.2-milestone-2 through 16.10.6, configuration files are accessible through jsx and sx endpoints. It's possible to access and read configuration files by using URLs such as...

9.3CVSS5.8AI score0.01652EPSS
In wildExploits0References113
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2018-17783

Malware in sbrugna...

6.5CVSS6.7AI score0.01079EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2137

Malware in sbrugna...

4.6CVSS6.4AI score0.00586EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986432)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986432 advisory. In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Fix bounds check for sx controls For sx controls the semantics of the max field is not...

5.5CVSS6AI score0.00234EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986879)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986879 advisory. In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Fix bounds check for sx controls For sx controls the semantics of the max field is not...

5.5CVSS6AI score0.00234EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-28091

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.00205EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-26643

Malicious code in bioql PyPI...

9.3CVSS6.4AI score0.01652EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-28090

Malicious code in bioql PyPI...

5.7CVSS6.6AI score0.00137EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/05 9:31 p.m.3 views

CVE-2025-55748

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 4.2-milestone-2 through 16.10.6, configuration files are accessible through jsx and sx endpoints. It's possible to access and read configuration files by using URLs such as...

9.3CVSS6.8AI score0.01652EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/03 8:41 p.m.6 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal via the resource parameter in the jsx and sx endpoints. An attacker can access and read sensitive configuration files by crafting URLs with "../" sequence that traverse directories. Remediation Upgrade...

9.8CVSS5.8AI score0.01652EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/03 8:19 p.m.10 views

CVE-2025-55748 XWiki Platform's configuration files can be accessed through jsx and sx endpoints

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 4.2-milestone-2 through 16.10.6, configuration files are accessible through jsx and sx endpoints. It's possible to access and read configuration files by using URLs such as...

9.3CVSS0.01652EPSS
Exploits0References3
CVE
CVE
added 2025/09/03 8:19 p.m.50 views

CVE-2025-55748

Affected product : XWiki Platform. Vulnerability : path traversal through the jsx and sx endpoints that allows remote attackers to read configuration files. Root cause : improper access control enabling traversal to read files like WEB-INF/xwiki.cfg. Versions affected : 4.2-milestone-2 through 16...

9.3CVSS6.2AI score0.01652EPSS
In wildExploits0References3Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-react-sx (npm)

The package @zalastax/nolb-react-sx was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @zalastax/nolb-node-sx (npm)

The package @zalastax/nolb-node-sx was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-13792 Malicious code in @zalastax/nolb-react-sx (npm)

The package @zalastax/nolb-react-sx was found to contain malicious code...

7.2AI score
Exploits0
Rows per page
Query Builder