Lucene search
+L

15926 matches found

ptsecurity
ptsecurity
added 2 days ago5 views

PT-2026-58607

Name of the Vulnerable Software and Affected Versions Windows 10 Windows 11 Windows Server affected versions not specified Description An uninitialized resource flaw in the Remote Desktop Protocol RDP allows an unauthorized attacker to execute arbitrary code over a network. This issue can be...

9.8CVSS6.4AI score0.00928EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2 days ago5 views

PT-2026-58120

Name of the Vulnerable Software and Affected Versions Windows File Explorer affected versions not specified Description The use of an uninitialized resource in Windows File Explorer allows an authorized attacker with local access to disclose information locally...

5.5CVSS6AI score0.00306EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2 days ago5 views

PT-2026-58546

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description Use of an uninitialized resource in Microsoft Office allows an unauthorized attacker to disclose sensitive information locally and affect the system. Recommendations At the moment,...

5.5CVSS6AI score0.0039EPSS
Exploits0References4
cvelist
cvelist
added 2 days ago34 views

CVE-2025-56364

A use of uninitialized value vulnerability exists in the Matter SDK connectedhomeip before 1.4.0, where the GetDestinationGroupId.Value method is called without first checking whether a value exists. This leads to a crash when an InvokeCommand is sent without initializing the destination group ID...

0.00169EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2 days ago7 views

PT-2026-58848

Name of the Vulnerable Software and Affected Versions Matter SDK connectedhomeip versions prior to 1.4.0 Description A use of uninitialized value occurs when the GetDestinationGroupId.Value method is called without verifying if a value exists. This happens when an InvokeCommand is sent without...

6.1AI score0.00169EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2 days ago4 views

PT-2026-58638

Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description An authorized attacker can disclose information over a network due to the use of an uninitialized resource. This issue allows attackers to obtain sensitive information and affect the...

6.5CVSS6.1AI score0.00952EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2 days ago12 views

PT-2026-58247

Use of uninitialized resource in Windows RDP allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.1AI score0.00666EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2 days ago6 views

PT-2026-58648

Name of the Vulnerable Software and Affected Versions Windows RDP affected versions not specified Description The use of an uninitialized resource in Windows Remote Desktop Protocol RDP allows an unauthorized attacker to disclose sensitive information over a network and affect the system...

6.5CVSS6.1AI score0.00887EPSS
Exploits0References5
osv
osv
added 3 days ago4 views

MGASA-2026-0247 Updated libheif packages fix security vulnerabilities

libheif has a Heap OOB Read/SEGV Crash via Zero samplesperchunk. CVE-2026-32738 libheif is Vulnerable to Infinite Loop DoS via stts Sample Duration Lookup. CVE-2026-32739 Heap-Buffer-Overflow Write in Grid Tile Chroma Compositing. CVE-2026-32740 libheif has a heap buffer overflow in...

8.8CVSS6.6AI score0.00514EPSS
Exploits5References4
osv
osv
added 3 days ago2 views

SUSE-SU-2026:2887-1 Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.40 fixes various security issues The following security issues were fixed: - CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. - CVE-2026-31505: iavf: fix out-of-bounds writes in iavfgetethtoolstats...

9.8CVSS6.7AI score0.00563EPSS
Exploits8References45
redhatcve
redhatcve
added 3 days ago9 views

CVE-2026-58208

A flaw was found in NATS Server. An unauthenticated client with access to the WebSocket listener could exploit a vulnerability where requests for the MQTT-over-WebSocket path were incorrectly routed into MQTT handling, even when MQTT was not configured. This allowed the client to access...

7.5CVSS6AI score0.00593EPSS
Exploits0References8
osv
osv
added 2026/07/09 12:53 p.m.3 views

OESA-2026-2935 libidn security update

GNU Libidn is a fully documented implementation of the Stringprep, Punycode and IDNA 2003 specifications. Libidn's purpose is to encode and decode internationalized domain names. Security Fixes: GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs...

4CVSS6.1AI score0.0011EPSS
Exploits1References2
osv
osv
added 2026/07/09 12:53 p.m.3 views

OESA-2026-2934 libidn security update

GNU Libidn is a fully documented implementation of the Stringprep, Punycode and IDNA 2003 specifications. Libidn's purpose is to encode and decode internationalized domain names. Security Fixes: GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs...

4CVSS6.1AI score0.0011EPSS
Exploits1References2
euvd
euvd
added 2026/07/09 12:31 a.m.9 views

EUVD-2026-42478

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score0.0027EPSS
Exploits0References3
euvd
euvd
added 2026/07/09 12:31 a.m.10 views

EUVD-2026-42481

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6AI score0.00215EPSS
Exploits0References3
nessus
nessus
added 2026/07/09 12:0 a.m.11 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
nessus
nessus
added 2026/07/09 12:0 a.m.10 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
osv
osv
added 2026/07/08 11:16 p.m.3 views

DEBIAN-CVE-2026-15132

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.4AI score0.0027EPSS
Exploits0References1
nvd
nvd
added 2026/07/08 11:16 p.m.8 views

CVE-2026-15132

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.0027EPSS
Exploits0References2
osv
osv
added 2026/07/08 11:16 p.m.3 views

DEBIAN-CVE-2026-15109

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6.5CVSS6.1AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder