Lucene search
K

1468 matches found

CVE
CVE
added 2026/04/17 6:59 p.m.11 views

CVE-2026-35215

CVE-2026-35215 – Firebird DoS via crafted slice packet Firebird, an open-source RDBMS, has a vulnerability in the sdl_desc() function across affected series prior to 5.0.4, 4.0.7, and 3.0.14. The function does not validate the length of a decoded SDL descriptor from a slice packet; a zero-length ...

7.5CVSS5.7AI score0.00466EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.6 views

PT-2026-33484

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the sdl desc function does not validate the length of a decoded SDL descriptor from a slice packet. A zero-length descriptor is later used to calculate the number of slice items, causin...

7.5CVSS5.7AI score0.00466EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.4 views

SUSE SLES15 Security Update : kernel (Live Patch 42 for SUSE Linux Enterprise 15 SP4) (SUSE-SU-2026:1281-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1281-1 advisory. This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.170 fixes various security issues The following security issues were fixed: ...

7.8CVSS6.8AI score0.00204EPSS
Exploits0References19
SUSE Linux
SUSE Linux
added 2026/04/13 4:4 p.m.4 views

Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.275 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-39973: i40e: add validation for ringlen param...

8.7CVSS5.8AI score0.00204EPSS
Exploits0References28
SUSE CVE
SUSE CVE
added 2026/04/09 11:25 p.m.5 views

SUSE CVE-2026-40026

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

4.8CVSS6AI score0.00126EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/09 12:31 a.m.4 views

EUVD-2026-20763

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

4.8CVSS6AI score0.00126EPSS
Exploits0References5
OSV
OSV
added 2026/04/08 10:16 p.m.5 views

UBUNTU-CVE-2026-40026

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

7.1CVSS6AI score0.00126EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/04/08 10:16 p.m.3 views

CVE-2026-40026

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

7.1CVSS6AI score0.00126EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/08 9:35 p.m.17 views

CVE-2026-40026 Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

4.8CVSS0.00126EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/08 9:35 p.m.4 views

CVE-2026-40026

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

7.1CVSS5.7AI score0.00126EPSS
Exploits0
OSV
OSV
added 2026/04/08 10:4 a.m.2 views

SUSE-SU-2026:1212-1 Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.121 fixes various security issues The following security issues were fixed: - CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. - CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689. -...

7.8CVSS6.7AI score0.00204EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.10 views

PT-2026-31463

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parse susp function trusts len id, len des, and len src fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parse...

4.8CVSS6AI score0.00126EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.6 views

SUSE CVE-2026-23455

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackh323: check for zero length in DecodeQ931 In DecodeQ931, the UserUserIE code path reads a 16-bit length from the packet, then decrements it by 1 to skip the protocol discriminator byte before passing it to...

6.3CVSS5.8AI score0.00514EPSS
Exploits0References20
CVE
CVE
added 2026/04/03 3:15 p.m.44 views

CVE-2026-23455

TL;DR : CVE-2026-23455 is a Linux kernel vulnerability in netfilter nf_conntrack_h323, fixed by adding a check so the decoded length remains positive after subtracting the protocol discriminator. Affected component : Linux kernel, nf_conntrack_h323 DecodeQ931() UserUserIE path. Root cause : The d...

9.1CVSS5.8AI score0.00514EPSS
Exploits0References8Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2026/04/03 12:0 a.m.47 views

CocoaMQTT: Denial of Service via Reachable Assertion in `PUBLISH` Packet Parsing

A vulnerability exists in the packet parsing logic of CocoaMQTT that allows an attacker or a compromised/malicious MQTT broker to remotely crash the host iOS/macOS/tvOS application. The vulnerability is located in Source/FramePublish.swift during the extraction of the Topic string from the incomi...

6.5CVSS5.9AI score0.00318EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2026/03/31 11:48 p.m.5 views

GHSA-P44Q-VQPR-4XMG Flask-HTTPAuth invokes token verification callback when missing or empty token was given by client

Summary In a situation where the client makes a request to a token protected resource without passing a token, or passing an empty token, Flask-HTTPAuth would invoke the application's token verification callback function with the token argument set to an empty string. If the application had any...

6.5CVSS5.9AI score0.00324EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/03/30 5:1 p.m.2 views

CVE-2025-66037

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, scpkcs15pubkeyfromspkifields allocates a zero-length buffer...

6.8CVSS5.4AI score0.00253EPSS
Exploits1
EUVD
EUVD
added 2026/03/26 9:31 p.m.7 views

EUVD-2026-16330

The API function sshgethexa is vulnerable, when 0-lenght input is provided to this function. This function is used internally in sshgetfingerprinthash and sshprinthexa deprecated, which is vulnerable to the same input length is provided by the calling application. The function is also used...

6.5CVSS5.9AI score0.00582EPSS
Exploits0References3
NVD
NVD
added 2026/03/26 9:17 p.m.2 views

CVE-2026-0966

A flaw was found in libssh. The API function sshgethexa is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI Generic Security Service Application Program Interface authentication if the server's logging verbosity is se...

8.2CVSS0.00582EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/03/26 8:6 p.m.2 views

CVE-2026-0966

A flaw was found in libssh. The API function sshgethexa is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI Generic Security Service Application Program Interface authentication if the server's logging verbosity is se...

8.2CVSS6.3AI score0.00582EPSS
Exploits0
Rows per page
Query Builder