Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/02/10 1:23 p.m.3 views

CVE-2026-22904

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS6.1AI score0.00177EPSS
Exploits0References1
NVD
NVDadded 2026/02/09 8:16 a.m.2 views

CVE-2026-22904

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS0.00177EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/09 7:40 a.m.24 views

CVE-2026-22904 Stack Overflow via Oversized Cookie Fields in lighttpd

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS0.00177EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/09 7:40 a.m.3 views

CVE-2026-22904

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS6.2AI score0.00177EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichmentadded 2026/02/09 7:40 a.m.1 views

CVE-2026-22904 Stack Overflow via Oversized Cookie Fields in lighttpd

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS6.2AI score0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/09 12:0 a.m.2 views

PT-2026-7082

Name of the Vulnerable Software and Affected Versions lighttpd affected versions not specified WAGO 0852-1322 affected versions not specified Description An issue exists where improper length handling during the parsing of multiple cookie fields, including the TRACKID field, can allow an...

9.8CVSS6.2AI score0.00177EPSS
Exploits0References11
NVD
NVDadded 2013/12/19 10:55 p.m.13 views

CVE-2013-6877

Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TRACKID element of an RMP file, a different vulnerability than CVE-2013-7260...

9.3CVSS7.8AI score0.34977EPSS
Exploits15References5
CVE
CVEadded 2013/12/19 10:0 p.m.54 views

CVE-2013-6877

RealPlayer is affected by two CVEs related to RMP file parsing. CVE-2013-6877 is a heap-based overflow triggered by a long TRACKID in an RMP file, enabling arbitrary code execution on Windows (before 17.0.4.61) and macOS (before 12.0.1.1738). CVE-2013-7260 covers multiple stack-based overflows fr...

9.3CVSS7.9AI score0.34977EPSS
Exploits15References5Affected Software1
Prion
Prionadded 2007/05/13 10:19 p.m.16 views

Heap overflow

Heap-based buffer overflow in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allows remote attackers to execute arbitrary code via multiple trackID values in a SETUP RTSP request...

10CVSS8AI score0.20299EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder