Lucene search
+L

234 matches found

Positive Technologies
Positive Technologies
•added 2026/06/02 12:0 a.m.•20 views

PT-2026-45871

Name of the Vulnerable Software and Affected Versions openSeaChest version 26.03.0 Description An out of bounds write occurs during the Trim/Unmap operation in openSeaChest. This issue allows for writing 16 bytes of extra memory outside of the allocated space when describing a range of Logical...

4.6CVSS5.8AI score0.00114EPSS
Exploits0References4
CNNVD
CNNVD
•added 2026/06/02 12:0 a.m.•19 views

Seagate openSeaChest ē¼“å†²åŒŗé”™čÆÆę¼ę“ž

Seagate openSeaChest is a set of cross-platform storage device management tools developed by Seagate Corporation. The version v26.03.0 of Seagate openSeaChest contains a security vulnerability. This vulnerability stems from out-of-bound writing during the Trim/Unmap operations, which may lead to...

4.6CVSS5.4AI score0.00114EPSS
Exploits0References2
AstraLinux
AstraLinux
•added 2026/05/20 5:53 a.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: jfs: Fixed null-ptr-deref in jfsioctrim Syzkaller Report Oops: General Protection Fault, likely for non-canonical addresses 0xdffffc0000000087: 0000 1 KASAN: null-ptr-deref in range 0x0000000000000438-0x000000000000043f CPU: 2...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References2
OSV
OSV
•added 2026/05/19 8:53 a.m.•10 views

BIT-MONGODB-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2026/05/14 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-8202

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2
EUVD
EUVD
•added 2026/05/13 6:30 p.m.•9 views

EUVD-2026-29894

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS5.8AI score0.00263EPSS
Exploits0References2
NVD
NVD
•added 2026/05/13 4:17 a.m.•11 views

CVE-2026-8202

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

6.5CVSS0.00263EPSS
Exploits0References1
Vulnrichment
Vulnrichment
•added 2026/05/13 12:19 a.m.•8 views

CVE-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS5.8AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/13 12:19 a.m.•67 views

CVE-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 2026/05/13 12:19 a.m.•8 views

CVE-2026-8202

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
CVE
CVE
•added 2026/05/13 12:19 a.m.•57 views

CVE-2026-8202

CVE-2026-8202 affects MongoDB Server prior to certain fixed versions: v7.0 before 7.0.34, v8.0 before 8.0.23, v8.2 before 8.2.9, and v8.3 before 8.3.2. The issue is a post-authentication CPU DoS caused by using a densely populated characters mask with large input strings in the MongoDB aggregatio...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References1Affected Software1
OSV
OSV
•added 2026/05/13 12:19 a.m.•3 views

CVE-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS5.9AI score0.00263EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/05/13 12:0 a.m.•13 views

PT-2026-40552

Name of the Vulnerable Software and Affected Versions MongoDB Server versions prior to 7.0.34 MongoDB Server versions prior to 8.0.23 MongoDB Server versions prior to 8.2.9 MongoDB Server versions prior to 8.3.2 Description An authenticated user with aggregation permissions can cause CPU...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 2026/04/21 12:0 a.m.•5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013322)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013322 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix memleak in tcpbpfsendmsg while sk msg is full If tcpbpfsendmsg is running while...

5.5CVSS6.3AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 2026/04/17 12:0 a.m.•5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007582)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007582 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: clear extent cache after moving/defragmenting extents The extent map cache can become stal...

5.6AI score0.00184EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 2026/03/03 12:0 a.m.•6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005427)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005427 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably f...

5.5CVSS6.5AI score0.00147EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 2026/03/03 12:0 a.m.•6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005807)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005807 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably f...

5.5CVSS6.8AI score0.00147EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
•added 2026/02/18 2:53 p.m.•4 views

CVE-2025-71237

In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block overflow that cause system hang When a user executes the FITRIM command, an underflow can occur when calculating nblocks if endblock is too small. Since nblocks is of type sectort, which is u64, a...

5.1AI score0.00118EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 7 : rh-nodejs12-nodejs-12.16.1-1.el7 (AXSA:2020-4480:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4480:02 advisory. nodejs: HTTP request smuggling using malformed Transfer-Encoding header CVE-2019-15605 nodejs: Remotely trigger an assertion on a TLS server with a...

9.8CVSS8.4AI score0.57132EPSS
Exploits2References7
Packet Storm
Packet Storm
•added 2025/12/22 12:0 a.m.•204 views

šŸ“„ Adobe DNG SDK Image Processing Logic

Proof of concept exploit that demonstrates a heap out-of-bounds read / write leading to memory corruption and potential code execution in the Image Processing Logic of Adobe DNG SDK versions prior to 1.7.1.2410...

7.1CVSS7.4AI score0.00168EPSS
Exploits2
Rows per page
Query Builder