Lucene search
+L
RedhatcveRecent

206739 matches found

redhatcve
redhatcve
added 2026/05/28 3:47 p.m.12 views

CVE-2026-48686

FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI Network Layer Reachability Information decoder. The function decodebgpsubnetencodingipv4raw in src/bgpprotocol.cpp reads prefixbitlength directly from the BGP packet line 99 without validating it is ...

9.8CVSS6.2AI score0.00565EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/28 3:46 p.m.12 views

CVE-2026-48684

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the NetFlow v9 options template parser. In processnetflowv9optionstemplate src/netflowplugin/netflowv9collector.cpp, the scope parsing loop lines 224-229 iterates until scopesoffset reaches the attacker-controlled...

6.5CVSS5.3AI score0.00264EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/28 3:33 p.m.16 views

CVE-2026-46191

A flaw was found in the Linux kernel's framebuffer console fbcon component. When console rotation fails, the fbconrotatefont function may keep an old font buffer that is too small for the rotated font. A local user printing to the rotated console with a high character code can trigger an...

7.1CVSS6AI score0.00131EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:33 p.m.22 views

CVE-2026-46190

A flaw was found in the Linux kernel's Memory Technology Device MTD SPI-NOR debugfs component. An out-of-bounds read vulnerability exists in the spinorparamsshow function due to an incorrect calculation of an array's size. This error allows a local attacker to read memory outside of the intended...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:26 p.m.24 views

CVE-2026-46166

A flaw was found in the Linux kernel's mac80211 wireless subsystem. This vulnerability arises from unsafe list iteration during radar detection work, where a channel context can be freed while still being processed. This can lead to a use-after-free memory error. A successful exploit could result...

8.8CVSS5.8AI score0.00203EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:1 p.m.12 views

CVE-2026-46181

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS5.8AI score0.00114EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:1 p.m.12 views

CVE-2026-46176

A flaw was found in the Linux kernel's RDMA/mlx5 component. An error path fall-through in the mlx5ibdevressrqinit function, specifically when ibcreatesrq fails, can lead to the use of freed memory and error pointers. This memory corruption vulnerability could result in system instability, denial ...

7.8CVSS6.1AI score0.00142EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:1 p.m.12 views

CVE-2026-44248

A flaw was found in Netty, an asynchronous event-driven network application framework. A remote attacker can exploit this vulnerability by sending a crafted MQTT 5 header with an oversized Properties section. This causes Netty to repeatedly parse and buffer the large Properties section in memory...

7.5CVSS6.7AI score0.00455EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 3:1 p.m.21 views

CVE-2026-42587

A flaw was found in Netty. A remote attacker can bypass the configured decompression limit in the HttpContentDecompressor by sending a specially crafted compressed payload using Brotli br, Zstandard zstd, or Snappy content encodings. This can lead to unbounded memory allocation, resulting in an...

7.5CVSS6.8AI score0.00887EPSS
Exploits1References4
redhatcve
redhatcve
added 2026/05/28 2:57 p.m.12 views

CVE-2026-46193

A flaw was found in the Linux kernel's xfrm: ah component, which handles network security protocols. When Extended Sequence Number ESN is active, the kernel incorrectly processes parts of network packet data during security checks. This error can lead to the system dropping legitimate network...

7CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 2:18 p.m.9 views

CVE-2026-46189

A flaw was found in the Linux kernel, specifically within the RDMA Remote Direct Memory Access vmwpvrdma module. This vulnerability is a double free, which means the system attempts to release the same memory resource twice. This can occur in an error handling path within the pvrdmaallocucontext...

7.8CVSS5.8AI score0.00143EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.16 views

CVE-2026-9565

A vulnerability was determined in haojing8312 WorkClaw up to 0.6.4. This affects the function isdangerous of the file apps/runtime/src-tauri/src/agent/tools/bash.rs of the component Blacklist Handler. Executing a manipulation can lead to os command injection. The attack can be executed remotely...

6.5CVSS6.3AI score0.0105EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.17 views

CVE-2026-9501

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.4AI score0.00144EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.16 views

CVE-2026-9581

A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is publicly available and might be used. Upgrading to version...

6.5CVSS6.2AI score0.00209EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.14 views

CVE-2026-9572

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

5.5CVSS5.2AI score0.00161EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.12 views

CVE-2026-9513

A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument hosttime can lead to os command injection. The attack can be launched remotely...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:16 p.m.13 views

CVE-2026-49009

Northern.tech Mender Server v4.1.0, v4.0.1 and below, and fixed in v4.1.1 and v4.0.2 allows Directory Traversal...

3.1CVSS5.8AI score0.0052EPSS
Exploits2References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.11 views

CVE-2026-9448

A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown function of the file /applyleave.php. Executing a manipulation of the argument ID can lead to cross site scripting. The attack may be performed from remote. The exploit has been publicly...

5.3CVSS4.1AI score0.00336EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.13 views

CVE-2026-48902

The password and username reset features created plain http links for https connections if the "Force SSL" flag wasn't explicitly set...

9.8CVSS5.8AI score0.0019EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.14 views

CVE-2026-48901

The InputFilter::getInstance method omitted a security sensitive parameter from the instance cache key...

7.5CVSS5.8AI score0.00245EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.15 views

CVE-2026-47715

Bugsink is a self-hosted error tracking tool. Prior to 2.2.0, Bugsink issue event pages accept a direct event identifier from the URL and, in affected versions, look up that event without also requiring it to belong to the issue in the URL. This is a project-boundary authorization issue: a...

3.1CVSS5.8AI score0.00154EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.12 views

CVE-2026-9544

A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10. Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig. Performing a manipulation of the argument tableno results in sql injection. The attack is possible...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.13 views

CVE-2026-38422

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the tasmota/tasmotaxdrvdriver/xdrv10scripter.ino, fetchjpg function...

7.3CVSS6.2AI score0.00813EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.12 views

CVE-2026-9605

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.14 views

CVE-2026-44723

Vowpal Wabbit is a machine learning system. The workflow .github/workflows/pythonchecks.yml embeds $ github.event.pullrequest.title directly inside double-quoted bash strings in four separate steps across four jobs, each passing it as a CLI argument to the Python test script...

9.9CVSS6.1AI score0.00469EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.14 views

CVE-2026-9466

A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoint. Executing a manipulation can lead to weak password recovery. The attack can be executed remotel...

6.9CVSS5.7AI score0.00352EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.16 views

CVE-2026-9628

A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipulation of the argument PPTP server address/username/password/tunnel name causes stack-based buffer...

9CVSS7.8AI score0.00472EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.12 views

CVE-2026-9460

A weakness has been identified in Edimax EW-7438RPn 1.31. This impacts the function formAccept of the file /goform/formAccept. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made...

9CVSS7.9AI score0.00751EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.16 views

CVE-2026-9454

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS7AI score0.01909EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.11 views

CVE-2026-9442

A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. Executing a manipulation of the argument selSSID can lead to buffer overflow. The attack can be launched remotely. Th...

9CVSS7.8AI score0.00589EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.14 views

CVE-2026-9436

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack can be...

10CVSS7AI score0.02005EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.10 views

CVE-2026-9430

A vulnerability was determined in Tenda F1202 1.2.0.20408. Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dips can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit...

9CVSS7.9AI score0.00438EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.15 views

CVE-2026-7524

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS6.4AI score0.00624EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:15 p.m.10 views

CVE-2026-44730

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.9.7, an organization admin can escalate their privileges by adding a user from a different organization with higher privileges, to their own organization. This is due to incorrect ACL o...

7.2CVSS5.8AI score0.00316EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.12 views

CVE-2026-36538

Netis AC1200 Router NC21 V4.0.1.4296 contains a hard-coded root credential stored in /etc/shadow.sample. The password for the root account is set to the trivially weak value root, allowing an attacker with access to the device to authenticate as root and gain full control of the underlying...

7.3CVSS5.8AI score0.00301EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.12 views

CVE-2026-36540

Netis AC1200 Router NC21 V4.0.1.4296 is vulnerable to unauthenticated command injection via the /cgi-bin/skkset.cgi endpoint. The password and newpwdconfirm POST parameters are passed directly to the underlying OS shell without sanitization. An attacker can inject arbitrary shell commands by...

7.3CVSS6.1AI score0.0132EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.13 views

CVE-2026-44277

A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attacker to execute unauthorized code or commands via crafted requests...

9.8CVSS6.2AI score0.00551EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.12 views

CVE-2026-36045

picoclaw =v0.1.2 and earlier is vulnerable to OS command injection via the ExecTool component pkg/tools/shell.go. The guardCommand function attempts to restrict shell command execution using a denylist of 8 regular expressions, but the denylist is incomplete...

7.3CVSS5.9AI score0.01314EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.12 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

3.7CVSS5.8AI score0.00251EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:14 p.m.11 views

CVE-2026-36539

Netis AC1200 Router NC21 V4.0.1.4296 exposes a CGI endpoint /cgi-bin/skkget.cgi that returns the entire router configuration as a JSON response with no authentication required. Any attacker on the LAN can send a single HTTP GET request and instantly retrieve administrator credentials, WiFi...

7.3CVSS5.8AI score0.00358EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/28 2:3 p.m.16 views

CVE-2026-46195

A flaw was found in the Linux kernel's Server Message Block SMB client. A malicious server can exploit this vulnerability on 32-bit systems by providing a crafted dacloffset value. This can cause a pointer wrap, leading to the dereferencing of invalid Discretionary Access Control List DACL fields...

9.8CVSS5.5AI score0.00675EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:54 p.m.13 views

CVE-2026-46207

A flaw was found in the Linux kernel's vsock/virtio component. When processing non-linear data buffers for the vsockmon tap device, the system did not correctly initialize the payload. This oversight could lead to uninitialized data being copied to the monitoring interface, potentially resulting ...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:25 p.m.10 views

CVE-2026-46209

A flaw was found in the Linux kernel's Direct Rendering Manager DRM Graphics Execution Manager GEM component. This vulnerability arises from an inconsistent calculation of plane dimensions, which can lead to incorrect memory allocation checks. A local attacker could exploit this by creating a...

7.8CVSS5.9AI score0.00139EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:19 p.m.13 views

CVE-2026-46214

A flaw was found in the Linux kernel's vsock/virtio component. This vulnerability occurs when virtiotransportrecvlisten calls skacceptqadded before transport validation, leading to a permanent increment of the skackbacklog counter if transport assignment fails. A remote attacker could exploit thi...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:17 p.m.12 views

CVE-2026-46215

A flaw was found in the Linux kernel. A race condition in the Direct Rendering Manager DRM subsystem's changehandle function could allow a local attacker to trigger a use-after-free vulnerability. This occurs when a concurrent gemclose operation removes one handle while another remains dangling...

7.8CVSS7.6AI score0.00134EPSS
Exploits1References4
redhatcve
redhatcve
added 2026/05/28 1:13 p.m.11 views

CVE-2026-48683

A flaw was found in FastNetMon Community Edition. This out-of-bounds read vulnerability in the NetFlow v9 data flowset processor allows a remote attacker to send specially crafted templates over unauthenticated UDP. This can lead to the disclosure of sensitive memory contents or cause a denial of...

6.5CVSS5.8AI score0.00331EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/28 1:13 p.m.12 views

CVE-2026-46216

A flaw was found in the Linux kernel's drm/xe/hdcp module. When media Graphics Translation GT is disabled via configfs, a NULL pointer dereference can occur in the intelhdcpgsccheckstatus function. This can lead to a kernel pagefault error, resulting in a system crash and a Denial of Service DoS...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:11 p.m.11 views

CVE-2026-46223

A flaw was found in the Linux kernel's cgroup subsystem. This vulnerability occurs during the rmdir operation when the process initiating the rmdir is also responsible for cleaning up zombie processes that are holding onto process namespace pidns resources. This specific scenario can lead to a...

5.5CVSS5.8AI score0.00083EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/05/28 1:2 p.m.13 views

CVE-2026-48692

A flaw was found in FastNetMon Community Edition. The gRPC API server, exposed on port 50052, operates without any authentication mechanism. A remote attacker with local network access can exploit this vulnerability to ban arbitrary IP addresses, resulting in a denial of service for legitimate...

8.1CVSS6AI score0.00233EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/28 1:2 p.m.15 views

CVE-2026-48688

A flaw was found in FastNetMon Community Edition. Multiple out-of-bounds read vulnerabilities exist within the BGP MPREACHNLRI IPv6 attribute decoder. A remote attacker could exploit these flaws by sending specially crafted BGP messages, which could lead to information disclosure or a denial of...

7.5CVSS5.7AI score0.00283EPSS
Exploits0References2
Total number of security vulnerabilities206739