Lucene search
K
Bdu FstecRecent

90104 matches found

BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to reading data beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS6.2AI score0.00384EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the preg_replace() function in the RoundCube Webmail email client allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the pregreplace function in the RoundCube Webmail email client is related to the lack of security measures for handling SQL query structures. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.5CVSS5.8AI score0.00764EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the Trend Micro Apex One antivirus software agent allows a hacker to increase their privileges.

The vulnerability of the Trend Micro Apex One antivirus software agent is related to a data source verification error. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS5.8AI score0.00246EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to induce a service failure.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5CVSS5.8AI score0.00193EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the fullscreen mode of Google Chrome and Microsoft Edge browsers allows a hacker to bypass the sandboxing protection mechanisms.

The vulnerability of the fullscreen mode of Google Chrome and Microsoft Edge browsers relates to the possibility of using memory after it is freed. Exploiting this vulnerability can allow a remote attacker to bypass the sandboxing protection mechanisms...

10CVSS5.8AI score0.00224EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the Chromoting remote administration tool, which operates on Google Chrome and Microsoft Edge browsers, allows a hacker to execute arbitrary code.

The vulnerability of the Chromoting remote administration tool for Google Chrome and Microsoft Edge lies in the ability to exploit memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS6.1AI score0.00309EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the RoundCube Webmail email client lies in the lack of validation for incoming requests, which allows attackers to disclose protected information or enhance their privileges.

The vulnerability of the RoundCube Webmail email client is related to the lack of validation for incoming requests. Exploiting this vulnerability can allow an attacker to disclose protected information or enhance their privileges...

6.5CVSS5.7AI score0.00315EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the fromSafeEmailFilter() function in the Tenda F1202 router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the from SafeEmailFilter function in the Tenda F1202 router software is related to the execution of an operation outside the buffer in memory when processing the page parameter. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause...

9CVSS8AI score0.00438EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the vfs_worm module in Samba software allows a hacker to modify any arbitrary files.

The vulnerability of the vfsworm module in Samba software is related to improper handling of insufficient permissions or privileges. Exploiting this vulnerability allows a remote attacker to modify arbitrary files...

7.5CVSS6AI score0.00904EPSS
Exploits0References6Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.6AI score0.00375EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the fromPptpUserAdd() function in the Tenda F1202 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromPptpUserAdd function in the Tenda F1202 router microprogramming system is related to the operation that goes beyond the buffer boundaries in memory when processing the parameters username and opttype. Exploiting this vulnerability allows a remote attacker to execute...

9CVSS7.9AI score0.00438EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of Azure Privileged Identity Management, a service for ensuring compatibility with Microsoft Azure Entra ID, allows a perpetrator to increase their privileges.

The vulnerability of Azure Privileged Identity Management, a service for ensuring compatibility between Microsoft Azure Entra IDs, involves bypassing authentication using a user-controlled key. Exploiting this vulnerability could allow an attacker to increase their privileges remotely...

9CVSS5.7AI score0.00426EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability in the Sanitizer API of Google Chrome and Microsoft Edge browsers allows a malicious actor to execute XSS attacks.

The vulnerability of the Sanitizer API on Google Chrome and Microsoft Edge browsers is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS5.7AI score0.00165EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the ServiceWorker interface in Google Chrome and Microsoft Edge browsers allows a hacker to bypass existing security mechanisms.

The vulnerability of the ServiceWorker interface in Google Chrome and Microsoft Edge is related to a breach of data protection mechanisms. Exploiting this vulnerability could allow an attacker to bypass existing security measures remotely...

3.1CVSS5.7AI score0.00187EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the SVG object processing mechanism in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of the SVG object processing mechanism in Google Chrome and Microsoft Edge lies in the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.1AI score0.00267EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the arp_create() function in the net/ipv4/arp.c module of the Linux operating system’s IPv4 protocol implementation allows a attacker to cause a service failure.

The vulnerability of the arpcreate function in the net/ipv4/arp.c module of the Linux kernel’s IPv4 protocol implementation is related to the dereferencing of a pointer with an expired validity period. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References16Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the Speech component in Google Chrome and Microsoft Edge browsers allows attackers to perform spoofing attacks.

The vulnerability of the Speech component in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow attackers to perform spoofing attacks remotely...

6.4CVSS5.7AI score0.0019EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of the Trend Micro Apex One antivirus software agent allows a hacker to increase their privileges.

The vulnerability of the Trend Micro Apex One antivirus software agent is related to a data source verification error. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS5.8AI score0.00213EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
•added 2026/05/28 12:0 a.m.•2 views

The vulnerability of Microsoft 365 Copilot’s intelligent virtual assistant in operating systems like iOS, related to the lack of measures for cleaning incoming data, allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of Microsoft 365 Copilot’s intelligent virtual assistant in operating systems like iOS stems from the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality and integrity of the protected informati...

9.4CVSS5.8AI score0.0042EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formAccept() function in the microprogramming software for routers EDIMAX BR-6478AC allows a hacker to inject arbitrary commands.

The vulnerability of the formAccept function in the microprogramming software for EDIMAX BR-6478AC routers lies in the lack of measures to neutralize special elements in the output data. Exploiting this vulnerability allows a remote attacker to inject arbitrary commands...

6.5CVSS6.8AI score0.01364EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formAccept() function in microprogramming software of Edimax EW-7438RPn wireless signal amplifiers allows a hacker to execute arbitrary code.

The vulnerability of the formAccept function in microprogrammed software for Edimax EW-7438RPn wireless signal amplifiers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

9CVSS7.9AI score0.00751EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formWpsProxyEnable() function in the microprogramming software for Edimax EW-7438RPn wireless signal amplifiers allows a hacker to execute arbitrary code.

The vulnerability of the formWpsProxyEnable function in the microprogramming software for Edimax EW-7438RPn wireless signal amplifiers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

9CVSS7.9AI score0.00589EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Drupal CMS system’s kernel allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the Drupal CMS system’s kernel is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting XSS attacks remotely...

6.4CVSS5.5AI score0.00238EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Drupal CMS system’s kernel allows a hacker to execute arbitrary code.

The vulnerability of the Drupal CMS system’s kernel is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6AI score0.00399EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Nginx UI server’s user interface lies in the lack of origin verification in WebSockets, allowing attackers to disclose confidential information.

The vulnerability of the Nginx UI server’s user interface lies in the lack of origin verification in WebSockets. Exploiting this vulnerability allows an attacker to disclose confidential information remotely...

9.4CVSS5.7AI score0.00176EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the container management system and the Incus virtual machine manager, related to the failure to take measures to neutralize special elements in the template creation mechanism, allows a perpetrator to execute arbitrary code.

The vulnerability of the container management system and the virtual machine manager Incus is related to the failure to take measures to neutralize special elements in the template creation mechanism. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.9CVSS6.1AI score0.00481EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Libarchive archive library, related to integer overflow, allows an attacker to trigger a service failure.

The vulnerability of the Libarchive archive library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service interruptions...

10CVSS5.8AI score0.01073EPSS
Exploits0References25Affected Software9
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the libexpat XML file analysis library, related to the swapping of the zero pointer, allows an attacker to trigger a service failure.

The vulnerability of the libexpat library for analyzing XML files is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Python library for working with PDF files, PyPDF, related to unlimited resource distribution, allows a hacker to cause a service failure.

The vulnerability of the Python library for working with PDF files, PyPDF, is related to the unlimited distribution of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

6.2CVSS5.8AI score0.00168EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Zabbix IT-infrastructure monitoring system, related to the implementation or modification of arguments, allows a perpetrator to execute arbitrary commands.

The vulnerability of the Zabbix IT-infrastructure monitoring system is related to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

6.6CVSS6AI score0.00251EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Zabbix IT-infrastructure monitoring system, related to the use of external control input data for class selection, allows a hacker to execute arbitrary code.

The vulnerability of the Zabbix IT-infrastructure monitoring system lies in the use of externally controlled input data for class selection. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

5.3CVSS6.1AI score0.00285EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the dwg_next_entity() function in the LibreDWG form processing library allows a hacker to cause a service failure.

The vulnerability of the dwgnextentity function in the library for processing DWG format files by LibreDWG is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

3.3CVSS5.8AI score0.00143EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the read_2004_compressed_section() function in the library for processing DWG format files by LibreDWG allows a perpetrator to cause service interruptions.

The vulnerability of the read2004compressedsection function in the library for processing DWG format files by GNU LibreDWG is related to the issue of the operation exceeding the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.3CVSS5.9AI score0.00124EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formConnectionSetting() function in the microprogramming software for Edimax EW-7438RPn wireless signal amplifiers allows a hacker to execute arbitrary code.

The vulnerability of the formConnectionSetting function in the microprogramming software for Edimax EW-7438RPn wireless signal amplifiers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

9CVSS7.9AI score0.00751EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formLicence() function in the microprogramming software for wireless signal amplifiers from Edimax, allows a intruder to execute arbitrary code.

The vulnerability of the formLicence function in the microprogramming software for Edimax EW-7438RPn wireless signal amplifiers is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

9CVSS7.9AI score0.00589EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the plugin for the GLPI system, Mreporting, relates to the lack of security measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the Mreporting plugin for the GLPI system is related to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

6.8CVSS6.1AI score0.00242EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the software for implementing the hypertext environment MediaWiki, related to the lack of measures taken to protect the structure of web pages, allows a violator to execute arbitrary code.

The vulnerability of the software for implementing the hypertext environment MediaWiki is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability may allow a malicious actor, operating remotely, to execute arbitrary code...

5.5CVSS6AI score0.00233EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Valkey data structure server arises from insufficient neutralization of special elements in queries, allowing attackers to execute arbitrary code.

The vulnerability of the Valkey data structure server is related to insufficient neutralization of special elements in requests. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.1AI score0.00586EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the aiohttp HTTP client, related to incorrect processing of highly compressed input data, allows attackers to cause service failures.

The vulnerability of the aiohttp HTTP client is related to the improper processing of highly compressed input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS6.7AI score0.00487EPSS
Exploits0References6Affected Software8
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Valkey data structure server, related to reading beyond the buffer in memory, allows attackers to cause service failures.

The vulnerability of the Valkey data structure server is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6AI score0.00552EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the libexpat XML file analysis library, related to the swapping of the zero pointer, allows an attacker to trigger a service failure.

The vulnerability of the libexpat library for analyzing XML files is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00144EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the package manager for Kubernetes Helm, related to the use of an unprotected alternative channel, allows a attacker to expose protected information.

The vulnerability of the package manager for Kubernetes Helm is related to the use of an unprotected alternative channel. Exploiting this vulnerability could allow a attacker to expose protected information...

7.8CVSS5.8AI score0.00178EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the universal monitoring system Zabbix, related to the provision of data elements for an erroneous session, allows a intruder to increase their privileges.

The vulnerability of the Zabbix universal monitoring system lies in the provision of data elements for erroneous sessions. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

7.5CVSS5.8AI score0.00154EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the bit_convert_TU() function in the LibreDWG form processing library allows a perpetrator to cause service interruptions.

The vulnerability of the bitconvertTU function in the LibreDWG form processing library is related to the issue of the operation exceeding the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

3.3CVSS5.9AI score0.00176EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the formiNICbasic() function in the microprogramming software for routers EDIMAX BR-6478AC allows a hacker to inject arbitrary commands.

The vulnerability of the formiNICbasic function in the microprogramming-based router EDIMAX BR-6478AC lies in the lack of measures taken to neutralize special elements in the output data. Exploiting this vulnerability allows a remote attacker to inject arbitrary commands...

6.5CVSS6.8AI score0.0135EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the printing subsystem in Samba-enabled network communication programs allows a hacker to execute arbitrary code.

The vulnerability of the printing subsystem in Samba networking-enabled programs is related to the lack of measures taken to neutralize special elements during the processing of the %J parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.1AI score0.12797EPSS
Exploits7References5Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability in the file brut/androlib/res/decoder/ResFileDecoder.java of the Android APK reverse-engineering tool Apktoo,l allows a hacker to write or rewrite any data.

The vulnerability in the brut/androlib/res/decoder/ResFileDecoder.java file of the Apktool tool for reverse-engineering Android APK files is related to an incorrect path limitation for the restricted access directory. Exploiting this vulnerability could allow a malicious actor to write or rewrite...

7.1CVSS5.9AI score0.00182EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Squid proxy server, related to reading beyond the buffer in memory, allows attackers to cause a service failure.

The vulnerability of the Squid proxy server is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.2CVSS6AI score0.01039EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the C-ares asynchronous DNS query library, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.

The vulnerability of the C-ares asynchronous DNS query library is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

5.9CVSS6.3AI score0.0039EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/05/27 12:0 a.m.•1 views

The vulnerability of the Python library for working with PDF files, PyPDF, arises from improper processing of highly compressed input data. This vulnerability allows attackers to cause service failures.

The vulnerability of the Python library for working with PDF files, PyPDF, is related to improper processing of highly compressed input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS5.8AI score0.00402EPSS
Exploits0References8Affected Software2
Total number of security vulnerabilities90104