15926 matches found
PT-2026-58607
Name of the Vulnerable Software and Affected Versions Windows 10 Windows 11 Windows Server affected versions not specified Description An uninitialized resource flaw in the Remote Desktop Protocol RDP allows an unauthorized attacker to execute arbitrary code over a network. This issue can be...
PT-2026-58120
Name of the Vulnerable Software and Affected Versions Windows File Explorer affected versions not specified Description The use of an uninitialized resource in Windows File Explorer allows an authorized attacker with local access to disclose information locally...
PT-2026-58546
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description Use of an uninitialized resource in Microsoft Office allows an unauthorized attacker to disclose sensitive information locally and affect the system. Recommendations At the moment,...
CVE-2025-56364
A use of uninitialized value vulnerability exists in the Matter SDK connectedhomeip before 1.4.0, where the GetDestinationGroupId.Value method is called without first checking whether a value exists. This leads to a crash when an InvokeCommand is sent without initializing the destination group ID...
PT-2026-58848
Name of the Vulnerable Software and Affected Versions Matter SDK connectedhomeip versions prior to 1.4.0 Description A use of uninitialized value occurs when the GetDestinationGroupId.Value method is called without verifying if a value exists. This happens when an InvokeCommand is sent without...
PT-2026-58638
Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description An authorized attacker can disclose information over a network due to the use of an uninitialized resource. This issue allows attackers to obtain sensitive information and affect the...
PT-2026-58247
Use of uninitialized resource in Windows RDP allows an unauthorized attacker to disclose information over a network...
PT-2026-58648
Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description The use of an uninitialized resource in Windows Remote Desktop Protocol RDP allows an unauthorized attacker to disclose sensitive information over a network and affect the system...
MGASA-2026-0247 Updated libheif packages fix security vulnerabilities
libheif has a Heap OOB Read/SEGV Crash via Zero samplesperchunk. CVE-2026-32738 libheif is Vulnerable to Infinite Loop DoS via stts Sample Duration Lookup. CVE-2026-32739 Heap-Buffer-Overflow Write in Grid Tile Chroma Compositing. CVE-2026-32740 libheif has a heap buffer overflow in...
SUSE-SU-2026:2887-1 Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP7)
This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.40 fixes various security issues The following security issues were fixed: - CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. - CVE-2026-31505: iavf: fix out-of-bounds writes in iavfgetethtoolstats...
CVE-2026-58208
A flaw was found in NATS Server. An unauthenticated client with access to the WebSocket listener could exploit a vulnerability where requests for the MQTT-over-WebSocket path were incorrectly routed into MQTT handling, even when MQTT was not configured. This allowed the client to access...
OESA-2026-2935 libidn security update
GNU Libidn is a fully documented implementation of the Stringprep, Punycode and IDNA 2003 specifications. Libidn's purpose is to encode and decode internationalized domain names. Security Fixes: GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs...
OESA-2026-2934 libidn security update
GNU Libidn is a fully documented implementation of the Stringprep, Punycode and IDNA 2003 specifications. Libidn's purpose is to encode and decode internationalized domain names. Security Fixes: GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs...
EUVD-2026-42478
Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
EUVD-2026-42481
Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
Google Chrome < 150.0.7871.114 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...
Google Chrome < 150.0.7871.114 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...
DEBIAN-CVE-2026-15132
Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-15132
Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
DEBIAN-CVE-2026-15109
Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...