Lucene search
+L

206 matches found

cvelist
cvelist
added 6 days ago39 views

CVE-2026-61858 ImageMagick before 7.1.2-26 Policy Bypass via APNG encoder

ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process...

4.8CVSS0.00246EPSS
Exploits0References2
ptsecurity
ptsecurity
added 6 days ago10 views

PT-2026-57445

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-26 Description A policy bypass exists in the APNG encoder and external delegates caused by missing validation checks. This allows attackers to bypass configured policy restrictions during the APNG encoding...

5.3CVSS6.1AI score0.00246EPSS
Exploits0References18
nvd
nvd
added 2026/07/06 9:16 p.m.7 views

CVE-2026-21368

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS0.0006EPSS
Exploits0References1
euvd
euvd
added 2026/07/06 8:9 p.m.6 views

EUVD-2026-41926

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS6.1AI score0.0006EPSS
Exploits0References1
cve
cve
added 2026/07/06 8:9 p.m.13 views

CVE-2026-21368

CVE-2026-21368 describes an out-of-bounds write in a camera driver when parsing JPEG commands, caused by unaccounted extra writes to the buffer during validation. The CVSS vector indicates local access, high complexity, and low privileges required, with a Overall impact of low confidentiality, in...

5.3CVSS6.1AI score0.0006EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2026/07/06 8:9 p.m.5 views

CVE-2026-21368

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS6.1AI score0.0006EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/07/06 8:9 p.m.8 views

CVE-2026-21368 Out-of-bounds Write in Camera Driver

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS6.1AI score0.0006EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/07/06 12:0 a.m.13 views

PT-2026-55988

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Memory corruption occurs when parsing jpeg commands. This is caused by unaccounted extra writes to the buffer during validation checks. Recommendations At the...

5.3CVSS6.1AI score0.0006EPSS
Exploits0References3
euvd
euvd
added 2026/07/03 8:19 p.m.7 views

EUVD-2026-41616

Gitea versions before 1.25.5 lack validation constraints for repository creation fields, including length-limited template fields and trust model or object format values...

5.9AI score0.00373EPSS
Exploits0References4
cve
cve
added 2026/06/11 5:4 a.m.36 views

CVE-2026-41000

The CVE-2026-41000 issue affects Spring Web Services where Wss4jSecurityInterceptor did not consistently wire Apache WSS4J ReplayCache instances into RequestData for validation-time checks. This undermines protections against replay of UsernameToken nonces and creation timestamps, as well as Time...

3.7CVSS5.5AI score0.00223EPSS
Exploits0References1
cve
cve
added 2026/05/28 5:58 p.m.38 views

CVE-2026-46526

CVE-2026-46526 concerns Local Deep Research. Before version 1.6.10, the URL validation flow had a logical flaw that could bypass SSRF protections because parsing differed between urlparse and the HTTP request library. The code first runs SSRF checks via validate_url and then uses requests.get to ...

5CVSS5.8AI score0.00247EPSS
Exploits0References6
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: TCP: Do not accept ACKs for bytes that we never sent. This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. The validation of ACK sequences currently follows the guidelines outlined in RFC 5961,...

5.5CVSS6.3AI score0.00227EPSS
Exploits0References2
redhat
redhat
added 2026/04/09 8:27 p.m.13 views

undici: Undici: HTTP header injection and request smuggling vulnerability

A flaw was found in undici, a Node.js HTTP/1.1 client. This vulnerability allows a remote attacker to inject malicious data into HTTP headers or prematurely end HTTP requests by sending specially crafted input to the upgrade option of client.request. This is possible because undici does not...

4.6CVSS7AI score0.00256EPSS
Exploits0References7
cve
cve
added 2026/02/17 6:53 p.m.124 views

CVE-2026-24734

CVE-2026-24734 is an Improper Input Validation vulnerability affecting Apache Tomcat Native and Apache Tomcat itself. When using an OCSP responder, Tomcat Native (and the Tomcat Native FFM port) may not perform verification or freshness checks on OCSP responses, potentially allowing certificate r...

7.5CVSS5.4AI score0.00498EPSS
Exploits0References11Affected Software1
redhat
redhat
added 2026/02/16 12:28 p.m.6 views

kernel: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec Commit efa56305908b "nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length" added ttag bounds checking and dataoffset validation in...

7.5CVSS5.7AI score0.0071EPSS
Exploits0References5
redhat
redhat
added 2026/02/16 12:13 p.m.7 views

kernel: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec Commit efa56305908b "nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length" added ttag bounds checking and dataoffset validation in...

7.5CVSS5.7AI score0.0071EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/02/11 12:0 a.m.10 views

PT-2026-7793

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 26.3 Apple iPadOS versions prior to 26.3 Apple macOS Sonoma versions prior to 14.8.4 Apple macOS Sequoia versions prior to 15.7.4 Apple macOS Tahoe versions prior to 26.3 Apple watchOS versions prior to 26.3...

5.4AI score0.00132EPSS
Exploits0References8
github
github
added 2026/02/02 10:11 p.m.10 views

cert-manager-controller DoS via Specially Crafted DNS Response

Impact The cert-manager-controller performs DNS lookups during ACME DNS-01 processing for zone discovery and propagation self-checks. By default, these lookups use standard unencrypted DNS. An attacker who can intercept and modify DNS traffic from the cert-manager-controller pod can insert a...

5.9CVSS5.5AI score0.00349EPSS
Exploits0References10Affected Software1
osv
osv
added 2026/01/25 3:15 p.m.6 views

UBUNTU-CVE-2026-22998

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec Commit efa56305908b "nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length" added ttag bounds checking and dataoffset validation in...

7.5CVSS6.2AI score0.0071EPSS
Exploits0References28
redhatcve
redhatcve
added 2026/01/09 11:19 a.m.24 views

CVE-2021-22892

An information disclosure vulnerability exists in the Rocket.Chat server fixed v3.13, v3.12.2 & v3.11.3 that allowed email addresses to be disclosed by enumeration and validation checks...

7.5CVSS6.3AI score0.01864EPSS
Exploits1References1
Rows per page
Query Builder