Lucene search
K

3982 matches found

NVD
NVD
added 5 days ago6 views

CVE-2026-31267

Mercusys MW302R MW302REUV11.4.10 Build 231023 is vulnerable to Buffer Overflow in the administrative web interface. A stack buffer overflow vulnerability in the administrative web interface allows an authenticated attacker with administrative privileges to trigger a system crash by sending a...

5.7CVSS0.00198EPSS
Exploits0References2
OSV
OSV
added 2026/07/07 2:34 p.m.5 views

PYSEC-2026-1306 Reverb use after free vulnerability

There exists a use after free vulnerability in Reverb. Reverb supports the VARIANT datatype, which is supposed to represent an arbitrary object in C++. When a tensor proto of type VARIANT is unpacked, memory is first allocated to store the entire tensor, and a ctor is called on each instance...

6.1CVSS6.1AI score0.00123EPSS
Exploits0References6
OSV
OSV
added 2026/07/07 10:17 a.m.4 views

PYSEC-2026-1034 Segfault in `CompositeTensorVariantToComponents`

Impact An input encoded that is not a valid CompositeTensorVariant tensor will trigger a segfault in tf.rawops.CompositeTensorVariantToComponents. python import tensorflow as tf encode = tf.rawops.EmptyTensorListelementdtype=tf.int32, elementshape=10, 15, maxnumelements=2 meta= ""...

4.8CVSS7.1AI score0.0049EPSS
Exploits1References8
OSV
OSV
added 2026/07/07 10:17 a.m.6 views

PYSEC-2026-1016 TensorFlow vulnerable to `CHECK` fail in `RaggedTensorToVariant`

Impact If RaggedTensorToVariant is given a rtnestedsplits list that contains tensors of ranks other than one, it results in a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf batchedinput = True rtnestedsplits = tf.constant0,32,64, shape=3,...

5.9CVSS7AI score0.00383EPSS
Exploits0References7
CVE
CVE
added 2026/07/06 8:33 p.m.39 views

CVE-2026-54763

Traefik (HTTP reverse proxy/load balancer) before versions v2.11.51, v3.6.22, and v3.7.6 allows underscore-variant identity spoofing via BasicAuth, DigestAuth, and ForwardAuth middlewares. These middlewares strip canonical header names but don’t account for underscore-variant headers, letting an ...

10CVSS6AI score0.00256EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/07/02 12:55 p.m.3 views

MINI-8226-H48W-PFXJ

Bulletin has no description...

7.5CVSS7AI score0.01479EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/07/02 5:24 a.m.8 views

Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cpu)

Red Hat AI Base Images 3.0.2 cpu is now available. Red Hat® AI Base Images...

8CVSS5.8AI score0.0032EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/30 11:30 a.m.16 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS7.4AI score0.03663EPSS
Exploits11References5
OSV
OSV
added 2026/06/22 5:17 p.m.3 views

MINI-352P-XP5F-23GM

Bulletin has no description...

5.3CVSS5.7AI score0.00313EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/17 8:52 p.m.10 views

Malicious code in boardflow (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a7f48df7609edb5bab9d9e572f093994d071165578a58032a69392d62b08b86 On pip install boardflow, setup.py spawns a background thread that fetches http://pooron.org/test.exe over plain HTTP into the OS temp directory and...

6.6AI score
Exploits0References4
EUVD
EUVD
added 2026/06/12 7:6 p.m.12 views

EUVD-2026-35191

TYPO3 HTML Sanitizer allows Cross-site Scripting...

2.1CVSS5.1AI score0.00282EPSS
Exploits0References5
OSV
OSV
added 2026/06/06 3:59 p.m.10 views

MINI-CMWG-65V3-H4GX

Bulletin has no description...

7CVSS5.2AI score0.00807EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.10 views

CVE-2026-4369

A maliciously crafted HTML payload in an assembly variant name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to...

7.1CVSS5.9AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 4:52 p.m.7 views

MINI-995X-C98F-P32M

Bulletin has no description...

6.5CVSS5.2AI score0.00248EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/04 9:24 p.m.17 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS6.1AI score0.03663EPSS
Exploits11References5
OSV
OSV
added 2026/06/04 9:59 a.m.11 views

MINI-5VGC-32CC-M48H

Bulletin has no description...

9.1CVSS5.7AI score0.0036EPSS
Exploits0
OSV
OSV
added 2026/06/01 12:57 p.m.4 views

SUSE-SU-2026:21945-1 Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: - Get rid of "'naked' return found in MITIGATIONRETHUNK build" objtool warnings bsc1212841, bsc1263834 - update CUDA variant to 580.159.03 - update non-CUDA variant to 580.159.03 bsc1262749 - Fixes CVEs: CVE-2025-33221,...

8.8CVSS5.7AI score0.00206EPSS
Exploits0References16
OSV
OSV
added 2026/06/01 9:27 a.m.6 views

SUSE-SU-2026:21920-1 Security update for nvidia-open-driver-G07-signed

This update for nvidia-open-driver-G07-signed fixes the following issues: - update CUDA variant to 595.71.05 - update non-CUDA variant to 595.71.05 bsc1262574 - CVEs fixed: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196,...

8.8CVSS5.8AI score0.00206EPSS
Exploits0References14
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.22 views

glib2 security update

An update is available for glib2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GLib provides the core application building blocks for libraries and...

9.8CVSS5.8AI score0.00767EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.11 views

RockyLinux 10 : glib2 (RLSA-2026:19148)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19148 advisory. glib: GLib: Buffer underflow in GVariant parser leads to heap corruption CVE-2025-14087 glib: Integer Overflow in GLib GIO Attribute Escaping Causes He...

9.8CVSS6.5AI score0.00767EPSS
Exploits0References5
Rows per page
Query Builder