Lucene search
+L

5257 matches found

Tenable Nessus
Tenable Nessus
added yesterday3 views

Linux Distros Unpatched Vulnerability : CVE-2026-50648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Allocation of resources without limits or throttling in .NET Framework allows an unauthorized attacker to deny service over a network. CVE-2026-50648 Note that...

7.5CVSS6.1AI score0.00617EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday5 views

Linux Distros Unpatched Vulnerability : CVE-2026-56135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - ntfs-3g - None Ubuntu Linux - In NTFS-3G through 2026.2.25, a heap-based buffer overflow exists in the function buildinheritedid in...

5.6AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday4 views

Linux Distros Unpatched Vulnerability : CVE-2026-50526

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper link resolution before file access 'link following' in .NET allows an authorized attacker to perform tampering locally. CVE-2026-50526 Note that Nessus...

7CVSS6.1AI score0.00159EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday5 views

Linux Distros Unpatched Vulnerability : CVE-2026-15768

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in HTML-in-Canvas in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to bypass same origin policy via a crafted...

6.5CVSS6.2AI score0.00208EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday4 views

Linux Distros Unpatched Vulnerability : CVE-2026-15775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

6.5CVSS6.2AI score0.00208EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2 days ago7 views

CVE-2026-10846

A flaw was found in ldns. When applications use ldns as a resolver over User Datagram Protocol UDP, it fails to properly match the query's destination address and port with the response's source address and port. Additionally, the query ID and question are not matched with the response. This...

8.2CVSS6.1AI score0.00147EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2 days ago7 views

CVE-2026-39244

A flaw was found in adm-zip. A remote attacker can exploit this vulnerability by providing a specially crafted ZIP file. The file's header can be manipulated to declare an extremely large uncompressed size, causing the application to allocate an excessive amount of memory. This excessive memory...

7.5CVSS6AI score0.00432EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2 days ago7 views

Linux Distros Unpatched Vulnerability : CVE-2026-15713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libsoup's HTTP/2 protocol implementation. The library fails to correctly release memory context blocks under specific stream...

5.9CVSS6.1AI score0.00349EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 3 days ago6 views

CVE-2026-14685

A flaw was found in HdrHistogram. A local attacker could exploit this vulnerability by manipulating the 'Count' argument within the recordValueWithCount function. This manipulation leads to a state issue, which could impact the integrity of data processing within the affected component. Mitigatio...

4.8CVSS5.8AI score0.00118EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 4 days ago10 views

CVE-2026-15538

A flaw was found in PrimeFaces PrimeReact. A remote attacker can exploit a weakness in the ObjectUtils.mutateFieldData function within the component API. This allows for the improper modification of object prototype attributes, potentially leading to unexpected behavior or further attacks. This...

6.5CVSS6.6AI score0.00256EPSS
Exploits0References10
OSV
OSV
added 4 days ago3 views

RHSA-2026:38503 Red Hat Security Advisory: openssl security update

Bulletin has no description...

7.5CVSS7AI score0.00805EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 6 days ago10 views

CVE-2026-52761

A flaw was found in ModSecurity, an open-source web application firewall WAF. The t:utf8toUnicode transformation function, responsible for converting UTF-8 encoded characters to Unicode, generates incorrect output on i386 architectures. This vulnerability allows an attacker to bypass WAF rules,...

5.8CVSS6AI score0.00411EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 6 days ago8 views

Linux Distros Unpatched Vulnerability : CVE-2026-15276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in pdeljanov Symphonia up to 0.6.0. This vulnerability affects unknown code of the component Metadata Handler. This manipulation causes...

4.8CVSS5.6AI score0.0012EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/07/10 9:19 p.m.8 views

CVE-2026-57156

A flaw was found in FreeRDP clients. A remote attacker, acting as a malicious Remote Desktop Protocol RDP peer, could exploit an integer overflow vulnerability. This overflow occurs when the client processes a specially crafted RDP message, leading to the allocation of an undersized memory buffer...

9.8CVSS6.5AI score0.00698EPSS
Exploits1References7
OSV
OSV
added 2026/07/10 1:48 p.m.7 views

DEBIAN-CVE-2026-45309

Bulletin has no description...

8.2CVSS6.1AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/07/10 1:40 p.m.8 views

CVE-2026-53877

A flaw was found in Django. Instantiating django.contrib.gis.gdal.GDALRaster with a bytes object representing a raster file can trigger a heap buffer over-read in the vsibuffer property, reading roughly 32 bytes past the end of the allocated buffer. An attacker who can supply crafted raster data...

6.3CVSS6.1AI score0.00291EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/10 1:40 p.m.11 views

CVE-2026-48588

A flaw was found in Django. When django.middleware.cache.UpdateCacheMiddleware or django.views.decorators.cache.cachepage is in use, responses that set a cookie are not excluded from caching if the request includes any cookie, even when that cookie is unrelated to the response for example, a...

5.3CVSS6.1AI score0.00375EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/10 11:45 a.m.10 views

CVE-2026-59938

A flaw was found in pypdf, a free and open-source pure-python PDF library. An attacker can exploit this vulnerability by crafting a malicious PDF file with image size values that are significantly larger than the actual embedded image data, causing pypdf to allocate large amounts of memory when...

6.9CVSS6AI score0.00303EPSS
Exploits0References7
OSV
OSV
added 2026/07/10 8:16 a.m.2 views

MINI-Q3MM-J367-6J2C

Bulletin has no description...

7.8CVSS6.1AI score0.00183EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/07/10 8:15 a.m.10 views

CVE-2026-40898

A flaw was found in quic-go, an implementation of the QUIC protocol in Go. A remote attacker can exploit this by sending specially crafted HTTP/3 trailer fields. This can cause the system to allocate excessive memory, leading to a denial-of-service DoS condition where the affected server or clien...

7.5CVSS6AI score0.00279EPSS
Exploits0References5
Rows per page
Query Builder