Lucene search
K

5838 matches found

EUVD
EUVD
added 2 hours ago2 views

EUVD-2026-42226

Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed. Imager mishandled large EXIF IFD entry count values, treating them as negative numbers. This could lead to an attempt to allocate a block nearly the size of the address space, which fails and kills the process. ...

6AI score
Exploits0References3
CVE
CVE
added 5 hours ago6 views

CVE-2026-14454

CVE-2026-14454 – Imager (Perl) : Imager versions before 1.033 mis-handle unsigned EXIF IFD entry counts as signed, causing large (near-address-space) allocation attempts. This could cause a worker process to terminate when processing crafted images with large EXIF data. Affected: Imager prior to ...

6AI score
Exploits0References2
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-25017

kill: 'kill -1' parsed as PID -1, sending SIGTERM to all processes system crash / DoS...

5.5CVSS5.9AI score0.00127EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-56051

Name of the Vulnerable Software and Affected Versions Cilium versions 1.19.0 through 1.19.1 Cilium versions 1.18.0 through 1.18.7 Cilium versions prior to 1.17.14 Description When L7 functionality is enabled, the Envoy instance creates a world-accessible socket on cluster nodes. A local attacker...

9.2CVSS5.9AI score0.00017EPSS
Exploits0References5
NVD
NVD
added 3 days ago6 views

CVE-2026-12386

Improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen allows Overflow Buffers. This issue affects Pardus Pen: from =4.1.5 before 4.2.1...

3.9CVSS0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago29 views

CVE-2026-12386 Buffer Overflow in TUBITAK BILGEM's Pardus Pen

Improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen allows Overflow Buffers. This issue affects Pardus Pen: from =4.1.5 before 4.2.1...

3.9CVSS0.00096EPSS
Exploits0References1
CVE
CVE
added 3 days ago11 views

CVE-2026-12386

CVE-2026-12386 describes an improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen, causing an overflow in buffers. Affected: Pardus Pen versions ≤ 4.1.5, before 4.2.1. The provided documents do not specify the exact vulnerable component, cod...

3.9CVSS5.9AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 3 days ago8 views

EUVD-2026-41764

Improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen allows Overflow Buffers. This issue affects Pardus Pen: from =4.1.5 before 4.2.1...

3.9CVSS5.9AI score0.00096EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 3 days ago11 views

PT-2026-55802

Name of the Vulnerable Software and Affected Versions Pardus Pen versions 4.1.5 through 4.2.0 Description An improper null termination issue in Pardus Pen allows for buffer overflows. This occurs when a string is not properly terminated with a null character, potentially allowing data to overwrit...

3.9CVSS6.1AI score0.00096EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/01 3:33 a.m.35 views

CVE-2026-44041 UltraVNC vncWc2Mb calls wcslen() before validating that the wide string is NUL-terminated

UltraVNC through 1.8.2.2 contains an out-of-bounds read in the wide-string to multibyte conversion helper. In rfb/dh.cpp:204, the vncWc2Mb function passes a caller-supplied WCHAR pointer to wcslen before any bounds check. If the caller provides a wide-character buffer that is not properly...

4.3CVSS0.00255EPSS
Exploits0References2
CVE
CVE
added 2026/07/01 3:33 a.m.13 views

CVE-2026-44041

UltraVNC

6.5CVSS5.9AI score0.00255EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/30 11:39 p.m.2 views

BIT-ENVOY-2026-48497 Envoy: Abnormal process termination in DNS UDP filter

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

7.5CVSS5.8AI score0.00405EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/30 4:1 p.m.7 views

EUVD-2026-40365

The OpenAPI.NET SDK contains a useful object model for OpenAPI documents in .NET along with common serializers to extract raw OpenAPI JSON and YAML documents from the model. From 2.0.0-preview11 until 2.7.5 and 3.5.4, a small OpenAPI document containing a circular schema reference can cause proce...

7.5CVSS5.8AI score0.00695EPSS
Exploits0References1
NVD
NVD
added 2026/06/29 8:17 p.m.7 views

CVE-2026-43743

A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination...

4.7CVSS0.00096EPSS
Exploits0References2
NVD
NVD
added 2026/06/29 8:17 p.m.12 views

CVE-2026-43724

The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or write kernel memory...

7.8CVSS0.00142EPSS
Exploits0References2
NVD
NVD
added 2026/06/29 8:17 p.m.6 views

CVE-2026-39868

This issue was addressed with improved input validation. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or corrupt kernel memory...

9.1CVSS0.00371EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/29 7:43 p.m.21 views

CVE-2026-39868

This issue was addressed with improved input validation. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or corrupt kernel memory...

0.00371EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/29 7:43 p.m.6 views

CVE-2026-39868

This issue was addressed with improved input validation. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or corrupt kernel memory...

5.7AI score0.00371EPSS
Exploits0References3
CVE
CVE
added 2026/06/29 7:43 p.m.16 views

CVE-2026-39868

CVE-2026-39868 affects Apple platforms (macOS Tahoe, iOS, iPadOS) and centers on a risk from improper input validation in the kernel pathway that could allow an app to cause an unexpected system termination or kernel memory corruption. The vulnerability is addressed in macOS Tahoe 26.5.2 and iOS/...

9.1CVSS5.7AI score0.00371EPSS
Exploits0References2Affected Software3
Vulnrichment
Vulnrichment
added 2026/06/29 7:42 p.m.6 views

CVE-2026-43724

The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or write kernel memory...

6AI score0.00142EPSS
Exploits0References2
Rows per page
Query Builder