Lucene search
+L

9 matches found

CVE
CVE
added 2 days ago6 views

CVE-2026-34150

CVE-2026-34150 describes a heap buffer overflow in wazuh-analysisd for Wazuh versions 1.0.0–4.14.4 that can be exploited by an unauthenticated remote attacker to crash the Wazuh manager’s analysis engine, leading to complete loss of SIEM alert processing. The attack leverages the default wazuh/wa...

7.5CVSS6.2AI score0.00215EPSS
Exploits0References1
NVD
NVD
added 2026/07/09 3:16 p.m.8 views

CVE-2026-60109

Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that allows unauthenticated remote attackers to crash the sensor by sending a crafted KRBERROR message with error-code 25 KDCERRPREAUTHREQUIRED containing a PA-DATA element with padata-type 2, 3,...

8.7CVSS0.00502EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/10 8:32 p.m.16 views

EUVD-2026-36136

TDengine is an open source, time-series database optimized for Internet of Things devices. In versions 3.4.0.0 through 3.4.1.5, an unauthenticated remote attacker can crash the taosd server process by sending a single crafted RPC packet. No credentials or prior session state are required. Version...

7.5CVSS5.5AI score0.00539EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/05/11 7:5 p.m.14 views

CVE-2026-33007

A flaw was found in the modauthnsocache module of httpd. This vulnerability allows an unauthenticated remote user to crash a child process due to a NULL pointer dereference when the server is operating in a caching forward proxy configuration. Mitigation Disabling modauthnsocache and restarting...

5.3CVSS5.8AI score0.00514EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/09 12:43 a.m.9 views

CVE-2026-6664 PgBouncer integer overflow in PgBouncer network packet parsing

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

7.5CVSS6AI score0.00698EPSS
Exploits1References1
OSV
OSV
added 2026/04/21 12:4 a.m.4 views

JLSEC-2026-160

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service...

7.5CVSS7.1AI score0.02183EPSS
Exploits0References2
CVE
CVE
added 2026/03/27 12:15 a.m.65 views

CVE-2026-33721

MapServer (CVE-2026-33721) has a heap-buffer-overflow in the SLD parser triggered by a crafted SLD containing more than 100 Threshold elements in a ColorMap/Categorize structure, exploitable by an unauthenticated remote attacker via WMS GetMap with SLD_BODY. Affects versions up to 4.2 prior to 8....

7.5CVSS5.8AI score0.00865EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2020/10/30 12:0 a.m.4 views

UBUNTU-CVE-2020-25692

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service...

7.5CVSS7.1AI score0.02183EPSS
Exploits0References4
OSV
OSV
added 2018/10/08 6:29 p.m.3 views

DEBIAN-CVE-2018-18066

snmpoidcompare in snmplib/snmpapi.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service...

7.5CVSS9.1AI score0.04298EPSS
Exploits1References1
Rows per page
Query Builder