Lucene search
+L

7 matches found

NVD
NVD
added 2026/07/01 3:17 p.m.12 views

CVE-2026-6686

FatFs R0.16 and earlier contains an uninitialized cluster exposure when flseek extends files beyond EOF without zero-filling newly allocated clusters. This maps to CWE-908 Use of Uninitialized Resource. Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 4.6, Medium. The...

4.6CVSS0.00177EPSS
Exploits2References4
CVE
CVE
added 2026/07/01 1:55 p.m.36 views

CVE-2026-6686

FatFs CVE-2026-6686 affects FatFs R0.16 and earlier. The issue is an uninitialized cluster exposure when f_lseek() extends a file beyond EOF without zero-filling newly allocated clusters, mapping to CWE-908 (Use of Uninitialized Resource). The root cause is not zero-filling or initializing cluste...

4.6CVSS5.8AI score0.00177EPSS
Exploits2References4Affected Software1
EUVD
EUVD
added 2026/07/01 1:55 p.m.7 views

EUVD-2026-40998

FatFs R0.16 and earlier contains an uninitialized cluster exposure when flseek extends files beyond EOF without zero-filling newly allocated clusters. This maps to CWE-908 Use of Uninitialized Resource. Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 4.6, Medium. The...

4.6CVSS5.8AI score0.00177EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.20 views

PT-2026-54928

Name of the Vulnerable Software and Affected Versions FatFs versions R0.16 and earlier Description An uninitialized cluster exposure occurs when the f lseek function extends files beyond the end-of-file EOF without zero-filling newly allocated clusters. This issue is a Use of Uninitialized...

4.6CVSS6.1AI score0.00177EPSS
Exploits2References7
EUVD
EUVD
added 2026/03/13 3:40 p.m.50 views

EUVD-2026-11645

Poseidon V1 variable-length input collision via implicit zero-padding...

8.7CVSS5.8AI score0.00221EPSS
Exploits0References5
NVD
NVD
added 2026/03/12 6:16 p.m.6 views

CVE-2026-32129

soroban-poseidon provides Poseidon and Poseidon2 cryptographic hash functions for Soroban smart contracts. Poseidon V1 PoseidonSponge accepts variable-length inputs without injective padding. When a caller provides fewer inputs than the sponge rate inputs.len k, hashm1, ..., mk equals hashm1, ......

8.7CVSS0.00221EPSS
Exploits0References3
OSV
OSV
added 2018/06/13 4:29 p.m.4 views

UBUNTU-CVE-2018-7167

Calling Buffer.fill or Buffer.alloc with some parameters can lead to a hang which could result in a Denial of Service. In order to address this vulnerability, the implementations of Buffer.alloc and Buffer.fill were updated so that they zero fill instead of hanging in these cases. All versions of...

7.5CVSS6.8AI score0.07214EPSS
Exploits0References5
Rows per page
Query Builder