Lucene search
K

563 matches found

RedHat Linux
RedHat Linux
added 2026/04/07 11:16 p.m.7 views

freerdp: FreeRDP has a Heap-use-after-free in play_thread

A heap use after free has been discovered in FreeRDP. The RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in rdpsndtreatwave...

8.7CVSS5.8AI score0.00534EPSS
Exploits0References7
OSV
OSV
added 2026/04/06 7:33 a.m.2 views

CVE-2026-31405 media: dvb-net: fix OOB access in ULE extension header tables

In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ulemandatoryexthandlers and uleoptionalexthandlers tables in handleoneuleextension are declared with 255 elements valid indices 0-254, but the index htype is deriv...

9.8CVSS5.9AI score0.0055EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

OpenAirInterface 安全漏洞

OpenAirInterface is a mobile communication network software platform developed by the French company OpenAirInterface. OpenAirInterface V2.2.0 contains a security vulnerability. This vulnerability arises from AMF crashing when receiving NGAP messages that contain invalid process codes or invalid...

7.5CVSS5.8AI score0.00292EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/04/02 8:39 a.m.7 views

SUSE CVE-2026-23402

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References3
OSV
OSV
added 2026/04/01 9:16 a.m.5 views

UBUNTU-CVE-2026-23402

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE Adjust KVM's sanity check against overwriting a shadow-present SPTE with a another SPTE with a different target PFN to only apply to direct MMUs, i.e. on...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/01 9:8 a.m.7 views

freerdp: FreeRDP has a Heap-use-after-free in play_thread

A heap use after free has been discovered in FreeRDP. The RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in rdpsndtreatwave...

8.7CVSS5.7AI score0.00534EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/03/28 12:27 a.m.5 views

SUSE CVE-2026-32692

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3.1.6 through 3.6.18 allows an authenticated unit agent to perform unauthorized updates to secret revisions. With sufficient information, an attacker can poison any existing secret revision within...

7.6CVSS5.9AI score0.00166EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/18 12:35 p.m.6 views

CVE-2026-32692

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3.1.6 through 3.6.18 allows an authenticated unit agent to perform unauthorized updates to secret revisions. With sufficient information, an attacker can poison any existing secret revision within...

7.6CVSS5.8AI score0.00166EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/18 12:35 p.m.25 views

CVE-2026-32692

The CVE-2026-32692 entry describes an authorization bypass in the Vault secrets back-end of Juju (versions 3.1.6–3.6.18). An authenticated unit agent can perform unauthorized updates to secret revisions, potentially poisoning existing secret revisions within the Vault secret back-end. Metrics ind...

7.6CVSS5.8AI score0.00166EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.9 views

Juju 安全漏洞

Juju is a canonical Juju open-source application orchestration engine. Juju versions 3.6.18 and earlier contain security vulnerabilities. These vulnerabilities stem from race conditions in the key management subsystem, which may allow authenticated unit agents to obtain ownership of newly...

5.3CVSS6.4AI score0.00233EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/16 2:29 p.m.3 views

CVE-2026-3081

A flaw was found in GStreamer. A remote attacker can exploit this vulnerability by providing specially crafted H.266 codec data during the parsing of decoding units. This issue arises from insufficient validation of the length of user-supplied data before it is copied to a fixed-length stack-base...

7.8CVSS6.6AI score0.00425EPSS
Exploits0References5
NVD
NVD
added 2026/03/16 2:19 p.m.4 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS0.00425EPSS
Exploits0References5
OSV
OSV
added 2026/03/16 2:19 p.m.6 views

UBUNTU-CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.2AI score0.00421EPSS
Exploits0References3
OSV
OSV
added 2026/03/16 2:19 p.m.6 views

UBUNTU-CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.3AI score0.00425EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:40 p.m.6 views

CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00421EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/13 8:40 p.m.29 views

CVE-2026-3086 GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS0.00421EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/13 8:39 p.m.3 views

CVE-2026-3081 GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score0.00425EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 8:39 p.m.4 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score0.00425EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/13 8:39 p.m.25 views

CVE-2026-3081 GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS0.00425EPSS
Exploits0References2
CVE
CVE
added 2026/03/13 8:39 p.m.78 views

CVE-2026-3081

CVE-2026-3081 affects GStreamer’s H.266 codec parser. The flaw is a stack-based buffer overflow in decoding unit parsing due to improper validation of user-supplied data length, enabling remote code execution in the context of the vulnerable process. Exploitation requires interaction; the attack ...

7.8CVSS7.7AI score0.00425EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder