Lucene search
K

60479 matches found

RedHat Linux
RedHat Linux
added 2026/03/23 3:37 p.m.3 views

gimp: GIMP: Remote Code Execution via XWD file parsing vulnerability

A flaw was found in GIMP. A remote attacker can exploit this out-of-bounds write vulnerability by tricking a user into opening a specially crafted XWD X Window Dump file. This issue occurs due to improper validation of user-supplied data during XWD file parsing, leading to a write past the end of...

7.8CVSS7.5AI score0.00622EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/23 3:37 p.m.5 views

gimp: GIMP: Remote Code Execution via out-of-bounds write in XWD file parsing

A flaw was found in GIMP. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the conte...

7.8CVSS7.2AI score0.00566EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/23 3:26 p.m.4 views

gimp: GIMP: Remote Code Execution via out-of-bounds write in XWD file parsing

A flaw was found in GIMP. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the conte...

7.8CVSS6AI score0.00566EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/23 3:26 p.m.4 views

gimp: GIMP: Remote Code Execution via XWD file parsing vulnerability

A flaw was found in GIMP. A remote attacker can exploit this out-of-bounds write vulnerability by tricking a user into opening a specially crafted XWD X Window Dump file. This issue occurs due to improper validation of user-supplied data during XWD file parsing, leading to a write past the end of...

7.8CVSS6.2AI score0.00622EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/23 1:2 p.m.3 views

gimp: GIMP: Remote Code Execution via out-of-bounds write in XWD file parsing

A flaw was found in GIMP. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the conte...

7.8CVSS7.2AI score0.00566EPSS
Exploits0References6
OSV
OSV
added 2026/03/23 8:6 a.m.1 views

SUSE-SU-2026:0958-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.272 fixes various security issues The following security issues were fixed: - CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. - CVE-2022-50697: mrp: introduce active flags to prevent UAF when...

7.8CVSS6.8AI score0.00278EPSS
Exploits0References19
Microsoft CVE
Microsoft CVE
added 2026/03/23 7:45 a.m.10 views

Chromium: CVE-2026-4450 Out of bounds write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00281EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/23 5:54 a.m.5 views

Multiple vulnerabilities in Xerox FreeFlow Core (XRX26-005)

Overview Xerox FreeFlow Core contains multiple vulnerabilities listed below. Path traversal CWE-22 - CVE-2026-2251 XML external entity reference XXE CWE-611 - CVE-2026-2252 FUJIFILM Business Innovation Corp. reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN...

9.8CVSS6.3AI score0.0039EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/03/23 1:32 a.m.6 views

openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

A flaw was found in OpenSSL. When processing a specially crafted PKCS12 Personal Information Exchange Syntax Standard file, a remote attacker can exploit an out-of-bounds write vulnerability. This issue, occurring within the OPENSSLuni2utf8 function, leads to memory corruption by writing data...

7.4CVSS6AI score0.00444EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.9 views

RHEL 9 : compat-openssl11 (RHSA-2026:5214)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:5214 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS6.4AI score0.00444EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.3 views

Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2025-38111)

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via mdiobus, there is no verification of parameters passed ...

7.1CVSS6.2AI score0.00179EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.3 views

PT-2026-27204

Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, there is an authenticated arbitrary file write vulnerability in saveAdditionalDevFile. This issue has been patched in version 1.8.4...

5.3CVSS5.8AI score0.00375EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.7 views

PT-2026-27280

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.165 Description An integer overflow in the Fonts component of Google Chrome prior to version 146.0.7680.165 could allow a remote attacker to perform an out-of-bounds memory write through a specially...

8.8CVSS6AI score0.00504EPSS
Exploits0References19
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/23 12:0 a.m.7 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0094-1 Rating: important References: 1259964 Cross-References: CVE-2026-4439 CVE-2026-4440 CVE-2026-4441 CVE-2026-4442 CVE-2026-4443 CVE-2026-4444 CVE-2026-4445 CVE-2026-4446 CVE-2026-4447 CVE-2026-4448...

8.8CVSS7.2AI score0.00415EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.8 views

Siemens APE1808 Out-of-bounds Write (CVE-2024-21762)

A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0...

9.8CVSS7.4AI score0.80835EPSS
Exploits12References3
OSV
OSV
added 2026/03/22 11:4 p.m.8 views

SUSE-SU-2026:0954-1 Security update for the Linux Kernel (Live Patch 68 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.258 fixes various security issues The following security issues were fixed: - CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. - CVE-2022-50697: mrp: introduce active flags to prevent UAF when...

7.8CVSS6.8AI score0.00278EPSS
Exploits0References19
SUSE Linux
SUSE Linux
added 2026/03/22 6:34 p.m.7 views

Security update for the Linux Kernel (Live Patch 66 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.250 fixes various security issues The following security issues were fixed: CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant...

8.7CVSS6AI score0.00278EPSS
Exploits0References36
OSV
OSV
added 2026/03/22 6:34 p.m.1 views

SUSE-SU-2026:0953-1 Security update for the Linux Kernel (Live Patch 65 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.247 fixes various security issues The following security issues were fixed: - CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. - CVE-2022-50697: mrp: introduce active flags to prevent UAF when...

7.8CVSS6.8AI score0.00278EPSS
Exploits0References19
NVD
NVD
added 2026/03/22 5:17 p.m.8 views

CVE-2026-4554

A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function FormWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been released to the...

8.8CVSS0.03411EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2026/03/22 2:0 p.m.9 views

Chromium: CVE-2026-4440 Out of bounds read and write in WebGL

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00324EPSS
Exploits0
Rows per page
Query Builder