Lucene search
K

38460 matches found

Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.5 views

PT-2026-26487

Name of the Vulnerable Software and Affected Versions fast-xml-parser versions 4.0.0-beta.3 through 5.5.6 Description The DocTypeReader in fast-xml-parser incorrectly uses JavaScript truthy checks to evaluate maxEntityCount and maxEntitySize configuration limits. When a developer sets either limi...

5.9CVSS5.8AI score0.00449EPSS
Exploits1References85
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

Fedora 43 : dotnet10.0 (2026-854e553ffa)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-854e553ffa advisory. This is the March 2026 release of .NET 10. Release Notes: - SDK: https://github.com/dotnet/core/blob/main/release-notes/10.0/10.0.4/10.0.104.md - Runtime:...

7.5CVSS5.9AI score0.02818EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.9 views

PT-2026-26376

Name of the Vulnerable Software and Affected Versions wolfSSL versions 5.8.4 and earlier Description An out-of-bounds heap read issue exists in the wc PKCS7 DecodeEnvelopedData function when processing crafted CMS EnvelopedData messages containing zero-length encrypted content. This issue could...

3.3CVSS5.1AI score0.00095EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.7 views

Photon OS 4.0: Linux PHSA-2026-4.0-0980

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0980. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS5.7AI score0.00199EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/18 11:29 p.m.4 views

CVE-2026-32636

A flaw was found in ImageMagick. The NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. This vulnerability could allow a remote attacker to cause a Denial of Service DoS by providing a specially crafted image, leading to system...

7.5CVSS5.7AI score0.00475EPSS
Exploits0References6
OSV
OSV
added 2026/03/18 9:16 p.m.3 views

DEBIAN-CVE-2026-32636

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. Versions 7.1.2-17 and 6.9.13-42 fix the issue...

7.5CVSS5.2AI score0.00475EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/18 8:55 p.m.2 views

CVE-2026-32700 Devise has a confirmable "change email" race condition that permits user to confirm email they have no access to

Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using...

6CVSS5.8AI score0.00275EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/18 8:30 p.m.1 views

CVE-2026-25745

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, the message/note update endpoint e.g. PUT or POST updates by message/note ID only and does not verify that the message belongs to the current patient or...

6.5CVSS5.8AI score0.00274EPSS
Exploits1References3Affected Software1
Snyk
Snyk
added 2026/03/18 8:19 p.m.5 views

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via the DecryptBytes function. An attacker can cause the process or goroutine to crash by sending a crafted AES-CBC encrypted assertion with a plaintext of all zero bytes, which triggers a panic due to...

8.7CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/18 8:19 p.m.11 views

gosaml2 CBC Padding Panic — Unauthenticated Process Crash

Summary The AES-CBC decryption path in DecryptBytes panics on crafted ciphertext whose plaintext is all zero bytes. After decryption, bytes.TrimRightdata, "\x00" empties the slice, then datalendata-1 panics with index out of range -1. There is no recover in the library. The panic propagates throu...

5.9AI score
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/18 8:19 p.m.2 views

GHSA-HWQM-QVJ9-4JR2 gosaml2 CBC Padding Panic — Unauthenticated Process Crash

Summary The AES-CBC decryption path in DecryptBytes panics on crafted ciphertext whose plaintext is all zero bytes. After decryption, bytes.TrimRightdata, "\x00" empties the slice, then datalendata-1 panics with index out of range -1. There is no recover in the library. The panic propagates throu...

8.7CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2026/03/18 8:5 p.m.4 views

GHSA-7C47-XR7Q-P6HG free5GC NRF Discovery EncodeGroupId Function Panics on Malformed group-id-list Parameter

Impact This is an Improper Input Validation vulnerability leading to Denial of Service. - Security Impact: A remote attacker can cause the NRF service to panic and crash by sending a crafted HTTP GET request with a malformed group-id-list parameter. This results in complete denial of service for...

8.7CVSS5.9AI score0.00674EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/18 6:31 p.m.4 views

EUVD-2026-12907

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.8AI score0.00114EPSS
Exploits0References9
EUVD
EUVD
added 2026/03/18 6:31 p.m.5 views

EUVD-2026-12887

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Fix off-by-one error in VF setupnicdevices cleanup In setupnicdevices, the initialization loop jumps to the label setupnicdevfree on failure. The current cleanup loop whilei-- skip the failing index i, causing a...

5.8AI score0.00114EPSS
Exploits0References8
NVD
NVD
added 2026/03/18 6:16 p.m.2 views

CVE-2026-23266

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.5CVSS0.00114EPSS
Exploits0References8
OSV
OSV
added 2026/03/18 6:16 p.m.5 views

DEBIAN-CVE-2026-23266

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/18 6:16 p.m.4 views

CVE-2026-23266

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References10
OSV
OSV
added 2026/03/18 6:16 p.m.3 views

UBUNTU-CVE-2026-23266

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2026/03/18 5:55 p.m.6 views

CVE-2026-32634 Glances Central Browser Autodiscovery Leaks Reusable Credentials to Zeroconf-Spoofed Servers

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, Glances stores both the Zeroconf-advertised server name and the discovered IP address for dynamic servers, but later builds connection URIs from the untrusted advertised name instead ...

8.1CVSS5.8AI score0.00282EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/18 5:55 p.m.27 views

CVE-2026-32634 Glances Central Browser Autodiscovery Leaks Reusable Credentials to Zeroconf-Spoofed Servers

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, Glances stores both the Zeroconf-advertised server name and the discovered IP address for dynamic servers, but later builds connection URIs from the untrusted advertised name instead ...

8.1CVSS0.00282EPSS
Exploits1References3
Rows per page
Query Builder