Lucene search
K

19 matches found

NVD
NVD
added 2026/04/22 9:17 p.m.12 views

CVE-2026-34067

nimiq-transaction provides the transaction primitive to be used in Nimiq's Rust implementation. Prior to version 1.3.0, HistoryTreeProof::verify panics on a malformed proof where history.len != positions.len due to asserteq!history.len, positions.len. The proof object is derived from untrusted p2...

6.5CVSS0.00318EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/22 7:52 p.m.4 views

CVE-2026-34067 nimiq-transaction vulnerable to panic via `HistoryTreeProof` length mismatch

nimiq-transaction provides the transaction primitive to be used in Nimiq's Rust implementation. Prior to version 1.3.0, HistoryTreeProof::verify panics on a malformed proof where history.len != positions.len due to asserteq!history.len, positions.len. The proof object is derived from untrusted p2...

3.1CVSS5.7AI score0.00318EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/22 7:52 p.m.3 views

CVE-2026-34067

nimiq-transaction provides the transaction primitive to be used in Nimiq's Rust implementation. Prior to version 1.3.0, HistoryTreeProof::verify panics on a malformed proof where history.len != positions.len due to asserteq!history.len, positions.len. The proof object is derived from untrusted p2...

3.1CVSS5.7AI score0.00318EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/22 7:52 p.m.14 views

CVE-2026-34067

The CVE-2026-34067 issue affects the nimiq-transaction component in Nimiq’s Rust implementation. Before version 1.3.0, the function HistoryTreeProof::verify panics when a proof is malformed and the arrays history and positions have different lengths, due to the assertion in code. The proof origin...

6.5CVSS5.7AI score0.00318EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.6 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gvfs (SUSE-SU-2026:0960-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0960-1 advisory. - CVE-2026-28295: information disclosure when processing untrusted PASV responses from FTP serve...

4.3CVSS6AI score0.0036EPSS
Exploits2References7
SUSE Linux
SUSE Linux
added 2026/03/23 8:51 a.m.3 views

Security update for gvfs

This update for gvfs fixes the following issues: CVE-2026-28295: information disclosure when processing untrusted PASV responses from FTP servers bsc1258953. CVE-2026-28296: arbitrary FTP command injection due to unsanitized CRLF sequences in user supplied file paths bsc1258954. Patch Instruction...

7.3CVSS5.9AI score0.0036EPSS
Exploits2References8
Cvelist
Cvelist
added 2026/02/26 3:33 p.m.22 views

CVE-2026-28295 Gvfs: gvfs ftp backend: information disclosure via untrusted pasv responses

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the...

4.3CVSS0.00186EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/12 9:15 a.m.16 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 8:6 a.m.9 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 7:51 a.m.14 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 7:29 p.m.6 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 10:9 a.m.5 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 4:12 a.m.6 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 3:37 a.m.6 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/04 7:21 p.m.13 views

libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References5
OSV
OSV
added 2026/02/02 2:16 p.m.3 views

UBUNTU-CVE-2026-1761

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.9AI score0.00947EPSS
Exploits0References3
CVE
CVE
added 2026/02/02 2:1 p.m.42 views

CVE-2026-1761

CVE-2026-1761 is a libsoup stack-based buffer overflow vulnerability triggered by parsing multipart HTTP responses due to an incorrect length calculation. A remote attacker can send a crafted multipart response to cause memory corruption, potentially crashing the application or enabling arbitrary...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References24
Vulnrichment
Vulnrichment
added 2026/02/02 2:1 p.m.4 views

CVE-2026-1761 Libsoup: stack-based buffer overflow in libsoup multipart response parsingmultipart http response

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References23
CNNVD
CNNVD
added 2024/05/27 12:0 a.m.4 views

Minder 安全漏洞

Minder is an open source platform that helps development teams and the open source community build more secure software and prove to others that the software they build is secure. A security vulnerability exists in versions of Minder prior to 0.0.51 that stems from the authentication program...

5.3CVSS5.6AI score0.0053EPSS
Exploits0References4
Rows per page
Query Builder