Lucene search
K

470 matches found

NVD
NVD
added last week9 views

CVE-2026-51218

A heap buffer overflow in the TS7Worker::PerformFunctionWrite function /core/s7server.cpp of snap7 v1.4.3 allows attackers to cause a Denial of Service DoS via a crafted packet...

6.5CVSS0.00303EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/29 12:0 a.m.4 views

CVE-2026-51218

A heap buffer overflow in the TS7Worker::PerformFunctionWrite function /core/s7server.cpp of snap7 v1.4.3 allows attackers to cause a Denial of Service DoS via a crafted packet...

6AI score0.00303EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in ruby-rails-html-sanitizer

Possible XSS Vulnerability in Rails::Html::Sanitizer There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. This vulnerability has been assigned the CVE identifier CVE-2022-32209. Vulnerabilities affected: ALL Not affected: NONEMeaning: Fixed versions: v1.4.3...

6.1CVSS6.5AI score0.2914EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36884

Unauthenticated PHP Object Injection in Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms = 1.4.3 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/13 12:0 a.m.14 views

PT-2026-49168

Name of the Vulnerable Software and Affected Versions runc versions prior to 1.3.6 runc versions prior to 1.4.3 runc versions prior to 1.5.0-rc.3 Description A flaw involving a /dev symlink allows a malicious container image to obtain limited write access to the host filesystem. This issue occurs...

3.3CVSS5.2AI score0.00222EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2026/06/05 7:20 p.m.9 views

CVE-2026-41135

free5GC UDR is the Policy Control Function PCF for free5GC, an an open-source project for 5th generation 5G mobile core networks. A memory leak vulnerability in versions prior to 1.4.3 allows any unauthenticated attacker with network access to the PCF SBI interface to cause uncontrolled memory...

7.5CVSS5.5AI score0.00515EPSS
Exploits1References1
OSV
OSV
added 2026/06/02 12:0 a.m.6 views

OPENSUSE-SU-2026:10933-1 hauler-1.4.3-5.1 on GA media

These are all security issues fixed in the hauler-1.4.3-5.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS5.8AI score0.00248EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:34 p.m.9 views

OESA-2026-2486 vorbis-tools security update

Ogg Vorbis is a fully open, non-proprietary, patent-and-royalty-free, general-purpose compressed audio format for mid to high quality 8kHz-48.0kHz, 16+ bit, polyphonic audio and music at fixed and variable bitrates from 16 to 128 kbps/channel. This places Vorbis in the same competitive class as...

8.2CVSS5.9AI score0.00515EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 12:0 a.m.5 views

OPENSUSE-SU-2026:10904-1 vorbis-tools-1.4.3-2.1 on GA media

These are all security issues fixed in the vorbis-tools-1.4.3-2.1 package on the GA media of openSUSE Tumbleweed...

8.2CVSS5.8AI score0.00515EPSS
Exploits0References1
OSV
OSV
added 2026/05/23 12:0 a.m.9 views

OPENSUSE-SU-2026:10843-1 hauler-1.4.3-3.1 on GA media

These are all security issues fixed in the hauler-1.4.3-3.1 package on the GA media of openSUSE Tumbleweed...

9.1CVSS5.8AI score0.00469EPSS
Exploits0References4
OSV
OSV
added 2026/05/20 12:0 a.m.5 views

OPENSUSE-SU-2026:10822-1 hauler-1.4.3-2.1 on GA media

These are all security issues fixed in the hauler-1.4.3-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00781EPSS
Exploits0References1
OSV
OSV
added 2026/05/15 3:16 p.m.5 views

UBUNTU-CVE-2026-34253

A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control functionality when processing malformed input, leading to a stack buffer underflow that can cause...

8.2CVSS6AI score0.00515EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.10 views

vorbis-tools 安全漏洞

Vorbis-tools is an open-source command-line tool developed by the Xiph.Org Foundation for creating and playing Ogg Vorbis files. Version 1.4.3 of vorbis-tools contains a security vulnerability. This vulnerability stems from the remotethread function in the ogg123 tool, which experiences a stack...

8.2CVSS6.1AI score0.00515EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/15 12:0 a.m.6 views

CVE-2026-34253

A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control functionality when processing malformed input, leading to a stack buffer underflow that can cause...

6AI score0.00515EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

openSUSE 16 Security Update : hauler (openSUSE-SU-2026:20711-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20711-1 advisory. Changes in hauler: - update to 1.4.3 bsc1262353, CVE-2026-39984, bsc1262942, CVE-2026-34986: 1.4 Bump go.opentelemetry.io/otel/sdk from 1.40.0 t...

7.5CVSS5.9AI score0.00651EPSS
Exploits0References6
OSV
OSV
added 2026/05/09 8:42 a.m.4 views

OPENSUSE-SU-2026:20711-1 Security update for hauler

This update for hauler fixes the following issues: Changes in hauler: - update to 1.4.3 bsc1262353, CVE-2026-39984, bsc1262942, CVE-2026-34986: 1.4 Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 in the gomodules group across 1 directory 1.4 Bump github.com/sigstore/timestamp-authority/v2...

7.5CVSS6.4AI score0.00651EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/08 10:52 p.m.6 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions through improper handling of missing user identifiers in the RemoveAmfSubscriptionsInfoProcedure process. An attacker can cause the application to panic and return a 500 Internal Serv...

7.1CVSS5.8AI score0.0042EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-38519

These are all security issues fixed in the hauler-1.4.3-1.1 package on the GA media of openSUSE Tumbleweed...

5.8AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.4 views

CVE-2026-41503

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service property decoder allows unauthenticated remote attackers to read past allocated buffer boundaries by sending an RP...

8.7CVSS5.6AI score0.00415EPSS
Exploits1References1
NVD
NVD
added 2026/04/24 8:16 p.m.7 views

CVE-2026-41475

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's WritePropertyMultiple service decoder allows unauthenticated remote attackers to read past allocated buffer boundaries by sending a truncated W...

9.1CVSS0.00482EPSS
Exploits1References1
Rows per page
Query Builder