Lucene search
K
RedhatcveRecent

206407 matches found

RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-48614

A flaw was found in Plesk. An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives. This can result in arbitrary file write as root, leading to full privilege escalation on the underlying server. Mitigation Red Hat...

9.9CVSS0.00294EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-58371

A flaw was found in SeaweedFS. This vulnerability allows a remote attacker to disclose sensitive information by exploiting an unvalidated JSONP JavaScript Object Notation with Padding callback parameter. The system reflects the callback parameter directly into responses without proper validation ...

3.1CVSS5.8AI score0.0021EPSS
Exploits0References8
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2025-12799

A flaw was found in Jastow. Jastow is vulnerable to Cross-Site Scripting XSS attack. If using a set of combined configuration to allow unescaped characters in URL with embedded Undertow and Jastow, a server might be vulnerable to improper input handling. Mitigation It is possible to contruct...

6.5CVSS5.9AI score0.00246EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-24260

A flaw was found in NVIDIA Container Toolkit. An attacker could exploit a time-of-check time-of-use TOCTOU race condition. This vulnerability might allow an attacker to achieve code execution, escalate privileges, and tamper with data. Mitigation Mitigation for this issue is either not available ...

8.5CVSS5.9AI score0.00489EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-14969

A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext block...

4.4CVSS5.9AI score0.00079EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-14935

A logic vulnerability was found in GStreamer's webrtcbin component. The checksdpcrypto function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attack...

3.7CVSS6AI score0.0015EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-54316

A flaw was found in Claude Code, an agentic coding tool. An attacker could exploit a misconfiguration in the tool's web request functionality, known as WebFetch, where the huggingface.co domain was pre-approved without proper path restrictions. By injecting untrusted content into a Claude Code...

9.1CVSS5.9AI score0.00403EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-12771

A flaw was found in BerriAI litellm. A remote attacker can exploit an improper authorization vulnerability within the M2M JWT Handler. This could allow unauthorized access, leading to a low impact on the confidentiality, integrity, and availability of affected resources. Mitigation Mitigation for...

7.5CVSS6AI score0.00288EPSS
Exploits1References8
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-38970

A flaw was found in pdfcpu. The PDF parser contains an uncontrolled recursion vulnerability when processing nested PDF objects, such as arrays. A remote attacker could exploit this by crafting a malicious PDF file. This could lead to a Denial of Service DoS due to excessive resource consumption,...

7.5CVSS6AI score0.00451EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-14535

A flaw was found in the fickling library, versions up to and including 0.1.11. A logic error in the security analysis passes allows an attacker to bypass intended safety checks during pickle deserialization. This vulnerability enables the invocation of arbitrary standard library modules, leading ...

8.8CVSS6AI score0.00304EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-14534

A flaw was found in the fickling library, which is designed to safely handle Python pickle data. The library's security checks in versions up to and including 0.1.10 fail to properly identify and block certain dangerous Python standard library modules during deserialization. This oversight allows...

8.8CVSS6.2AI score0.00328EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-44628

A flaw was found in DCMTK. An unauthenticated attacker can send a specially crafted query to the worklist server. If the server meets specific conditions, including having a valid Called AE Title/storage directory, an expected lockfile, and at least one matching worklist record, this crafted quer...

8.7CVSS5.8AI score0.00395EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-42504

A flaw was found in the Golang MIME Multipurpose Internet Mail Extensions package. A remote attacker could exploit this vulnerability by sending a maliciously-crafted MIME header containing many invalid encoded-words. This could lead to excessive CPU consumption, resulting in a Denial of Service...

7.5CVSS7.1AI score0.0056EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2 days ago•2 views

CVE-2026-14742

A flaw was found in langgraph. A remote attacker could exploit this vulnerability by manipulating the defaultcachekey argument within the freeze function of the Task Result Cache component. This manipulation leads to the use of a weak hash, which may result in limited information disclosure...

3.1CVSS5.7AI score0.0016EPSS
Exploits0References10
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-14940

A heap-buffer-overflow flaw was found in 389 Directory Server 389-ds-base. When normalizing a Distinguished Name DN that contains a legacy-quoted value encoding a multivalued nested Relative Distinguished Name RDN, the server can write past the end of a heap allocation while sorting RDN...

5.3CVSS5.8AI score0.00307EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-41516

A flaw was found in OP-TEE Trusted Execution Environment. The RSA PKCS1 v1.5 decryption implementation within the Hisilicon HPRE crypto driver uses a non-constant-time comparison function for label hash verification, leading to multiple distinguishable error paths. This creates a...

3.3CVSS5.9AI score0.00099EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-55798

A flaw was found in Pillow, a Python imaging library. The WindowsViewer.getcommand function constructed a command-line interface CLI shell command by directly embedding a file path without proper escaping. This allowed shell metacharacters within the file path to inject arbitrary commands into...

4.5CVSS6.1AI score0.00136EPSS
Exploits1References8
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-41515

A flaw was found in OP-TEE, a Trusted Execution Environment TEE for Arm Cortex-A cores. The RSA-OAEP decryption implementation in the NXP CAAM crypto driver uses non-constant-time memory comparison for label hash verification, leading to multiple distinguishable error paths. This vulnerability...

3.3CVSS5.9AI score0.00094EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-42546

A flaw was found in OP-TEE, a Trusted Execution Environment TEE for Arm Cortex-A cores. A resource leak exists in the shared memory cleanup logic where the system fails to properly release memory objects when processing non-contiguous memory parameters from a normal-world caller. Over time, these...

3.8CVSS6AI score0.00105EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-41434

A flaw was found in OP-TEE Open Portable Trusted Execution Environment, a secure environment for Arm Cortex-A cores. This vulnerability allows a local attacker with low privileges to trigger an unbounded recursion within the PKCS11 Trusted Application TA. Successful exploitation could lead to a...

3.3CVSS5.9AI score0.00105EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-44362

A flaw was found in OP-TEE, a Trusted Execution Environment TEE for Arm Cortex-A cores. This vulnerability allows a local attacker to bypass subkey rollback protection due to a failure in propagating versioning data during the Trusted Application TA loading process. Specifically, the system...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-53763

A flaw was found in OP-TEE Trusted Execution Environment. This vulnerability involves 32-bit integer overflows within the AES-GCM cryptographic implementation. When processing large amounts of data over 512 megabytes, the system may incorrectly compute the authentication tag. This could allow a...

3.8CVSS5.9AI score0.00149EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-41514

A flaw was found in OP-TEE, a Trusted Execution Environment TEE designed for Arm Cortex-A cores. The RSA-OAEP decryption implementation in the Hisilicon HPRE crypto driver uses a non-constant-time comparison function, creating a vulnerability known as a padding oracle. This allows a local attacke...

3.3CVSS5.9AI score0.00095EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•3 views

CVE-2026-40257

A flaw was found in OP-TEE Trusted Execution Environment. An off-by-one error in the ARM Crypto Extensions accelerated SHA-3 implementation can lead to a massive heap overflow. This vulnerability allows for the corruption of all TEE kernel memory, potentially impacting the integrity and...

5.5CVSS6.1AI score0.00109EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54059

A flaw was found in Pillow, a Python imaging library. A remote attacker could exploit this vulnerability by providing specially crafted PCF font data. This data, when processed, can lead to excessive memory allocation because the library does not properly check for decompression bombs. The primar...

7.5CVSS6AI score0.00354EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-54060

A flaw was found in Pillow, a Python imaging library. When processing a specially crafted font file, the library's font compilation function does not adequately check for excessive memory allocation. This oversight allows a remote attacker to trigger an unreasonable consumption of system memory,...

7.5CVSS5.9AI score0.00361EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54502

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer. fillindent in dump.h calls memsetindentstr, ' ', sizetopts-indent without...

6.3CVSS6.2AI score0.00257EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54500

A flaw was found in Oj Optimized JSON, a Ruby gem. When parsing a specially crafted JSON object with a key 254 bytes or longer using Oj.load in :object mode, an attacker can trigger a read of uninitialized stack memory. This vulnerability, an out-of-bounds read CWE-125, can lead to information...

5.3CVSS5.9AI score0.00197EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54901

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj::Parser in usual mode does not mark arrayclass and hashclass references during garbage collection, leading to Use-After-Free. If GC runs after the class is assigned but before a parse,...

6.3CVSS5.9AI score0.00253EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54898

A flaw was found in Oj, a Ruby library designed for efficient JSON JavaScript Object Notation parsing. This vulnerability, a heap use-after-free, occurs when a specific function, called a callback, modifies the input JSON string during the parsing process. This action can lead to the program...

6.5CVSS5.9AI score0.00117EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-54902

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, is vulnerable to Use-After-Free when in SAJ mode. The Oj::Parser does not protect cached object keys ≥ 35 bytes from garbage collection, and a Ruby callback that triggers GC inside hashend ca...

6.3CVSS5.9AI score0.00253EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54900

A flaw was found in Oj, a Ruby gem for JSON parsing. When processing a specially crafted JSON object key of a specific length 65,535 bytes in usual mode with createid enabled, an integer truncation vulnerability occurs. This leads to a negative size being passed to the memcpy function, causing he...

7.5CVSS5.9AI score0.00253EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54592

A flaw was found in Oj, a Ruby gem for JSON parsing. A remote attacker can exploit this vulnerability by providing a deeply nested JSON document. This can lead to a stack buffer overflow in the Oj::Doceachchild function, causing the process to abort and resulting in a denial of service DoS for th...

7.5CVSS6.1AI score0.00263EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-54903

A flaw was found in Oj, an Optimized JSON JavaScript Object Notation parser for Ruby. This vulnerability allows a remote attacker to cause heap corruption and a denial of service DoS by providing a JSON string larger than 2 gigabytes GB. An integer overflow occurs when processing the string lengt...

7.5CVSS6AI score0.00253EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•6 views

CVE-2026-54897

A flaw was found in Oj Optimized JSON, a Ruby gem for parsing JSON. This vulnerability, categorized as a heap use-after-free CWE-416, occurs in the Oj::Doc iterators, specifically eachvalue, eachchild, and eachleaf. An attacker could exploit this when a Ruby code block, executed during iteration,...

7.8CVSS6AI score0.00117EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-54896

A flaw was found in Oj Optimized JSON, a Ruby gem used for processing JSON data. This vulnerability occurs when the software attempts to serialize convert into a format for storage or transmission Exception objects with a very large indentation setting. The internal process for handling this...

7.8CVSS6.3AI score0.00119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-55380

A flaw was found in Pillow, a Python imaging library. A remote attacker could exploit this vulnerability by providing a specially crafted GD 2.x image file. The GdImageFile.open function reads image dimensions without proper validation, leading to excessive memory allocation. This can result in a...

7.5CVSS5.9AI score0.00361EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-54899

A flaw was found in Oj Optimized JSON, a Ruby gem for parsing JSON. When a Oj::Parser instance is reused and its symbolkeys setting is toggled from true to false, a heap use-after-free vulnerability occurs. This happens because the internal key cache is freed but its pointer is not cleared,...

6.5CVSS6.1AI score0.00428EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-11610

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS5.9AI score0.00501EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-14474

A flaw was found in SSSD's LDAP sudo provider. When the ldapsudosearchbase option is not explicitly configured, SSSD searches the entire LDAP directory tree for sudoRole objects. An authenticated attacker with write access to any subtree can inject a sudoRole object granting root-level sudo...

8.8CVSS5.9AI score0.00348EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2 days ago•5 views

CVE-2026-55379

A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to cause a Denial of Service DoS by providing a specially crafted BDF font file. The library's image processing function fails to properly validate dimensions from the font file, bypassing a critical...

7.5CVSS6AI score0.00364EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-14684

A flaw was found in HdrHistogram. A local attacker can exploit a vulnerability in the decodeFromByteBuffer function by manipulating the numberOfSignificantValueDigits argument. This manipulation leads to uncontrolled memory allocation, which can result in a Denial of Service DoS condition, making...

5CVSS5.6AI score0.0012EPSS
Exploits0References9
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-8924

A flaw was found in curl's cookie parsing logic. A malicious HTTP server can exploit this by setting 'super cookies' that bypass the Public Suffix List check. This allows an attacker-controlled origin to inject cookies that curl then transmits to unrelated third-party domains, leading to...

9.1CVSS5.9AI score0.00509EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2 days ago•4 views

CVE-2026-14604

A flaw was found in Open Asset Import Library Assimp. This vulnerability, a double free, exists within the PLY Model Handler component. A remote attacker could exploit this flaw by manipulating PLY model files, leading to a denial of service and making the application unavailable. Mitigation To...

6.5CVSS6AI score0.00233EPSS
Exploits0References9
RedhatCVE
RedhatCVE
•added 3 days ago•6 views

CVE-2026-11352

A flaw was found in curl and libcurl. A malicious HTTP/3 server can exploit an issue in the QUIC UDP receive function by continuously streaming empty UDP datagrams. This can lead to a remote denial of service DoS against a curl or libcurl client, as the helper function discards zero-length UDP...

7.5CVSS6.1AI score0.00756EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 3 days ago•4 views

CVE-2026-11586

A flaw was found in curl. A malicious server can exploit this vulnerability by sending rapid, sequential WebSocket PING messages. Due to a lack of an upper bound on memory allocation for unacknowledged frames, curl can be forced to exhaust all available memory, leading to a denial of service...

7.5CVSS5.8AI score0.00623EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 3 days ago•4 views

CVE-2026-12064

A flaw was found in curl. When a user invokes curl with a schemeless URL and specifies SFTP SSH File Transfer Protocol or SCP Secure Copy Protocol as the default protocol, the tool layer fails to initialize critical SSH security options. This bypasses host verification, allowing curl to connect t...

7.5CVSS5.9AI score0.0045EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 3 days ago•7 views

CVE-2026-14570

A flaw was found in Crypt::DSA. Versions before 1.22 for Perl use a biased random number generator when creating the Digital Signature Algorithm DSA signing nonce and private key. This bias allows a remote attacker to recover the private key through a lattice attack if they collect a sufficient...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 3 days ago•4 views

CVE-2026-8286

A flaw was found in curl. When a new data transfer attempts to upgrade its connection using STARTTLS, it may incorrectly reuse an existing live connection. This reuse can occur even if the Transport Layer Security TLS configuration of the new transfer does not match the existing connection,...

8.1CVSS5.8AI score0.00413EPSS
Exploits1References6
Total number of security vulnerabilities206407