Lucene search
+L
UbuntucveRecent

71772 matches found

UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•8 views

CVE-2026-12932

metadata buffer leak...

6.1AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•6 views

CVE-2026-11771

1-byte buffer overrun on NTLMv2 proxy responses...

6.2AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•6 views

CVE-2026-12996

ackwritebuf use after free...

6.1AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•6 views

CVE-2026-12184

security update...

6.1AI score
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•6 views

CVE-2026-13117

tlswrapreneg use after free...

7AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•6 views

CVE-2026-14355

In PHP versions 8.2. before 8.2.32, 8.3. before 8.3.32, 8.4. before 8.4.23, 8.5. before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES key-wrap-with-padding operation is sized from the plaintext length without...

5.6CVSS6.2AI score0.00306EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/03 12:0 a.m.•8 views

CVE-2026-14544

A flaw was found in HPLIP HP Linux Imaging and Printing Software. This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer overflow in the hpcups processing path when handling...

9.8CVSS6.2AI score0.00618EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 10:16 p.m.•5 views

CVE-2026-12413

An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart. Continued exploitation would cause a denial of service. The function reassemblev2incomingfragments would ignore unknown outer payloads but still store these in a fixed size array msgdigest.digestPAYLIMIT...

7.5CVSS6.5AI score0.00597EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 10:16 p.m.•6 views

CVE-2026-50721

Libreswan, via the function RSAauthenticatehashsignaturerawrsa, did not correctly verify the length of the authentication hash when the SIG payload of an IKEv1 packet was encoded using PKCS 1 RSA Encryption as per RFC 2313. A remote attacker can use a variation on the Bleichenbacher attack to for...

8.1CVSS6.4AI score0.00392EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/07/02 10:16 p.m.•5 views

CVE-2026-50722

Libreswan, via the function RSAauthenticatehashsignaturepkcs115rsa, did not correctly verify the DER encoding of the ASN.1 digest when the IKEv2 AUTH payload was encoded using RSASSA-PKCS1-v15 RFC 8017. A remote attacker can use a variation on the Bleichenbacher attack to forge the AUTH payload...

8.1CVSS6.4AI score0.00352EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/07/02 9:16 p.m.•5 views

CVE-2026-38968

ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak time-seeded pseudo-randomness during session creation. As a result, fresh authenticated logins can receive deterministic or colliding...

9.8CVSS6.1AI score0.00379EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 9:16 p.m.•5 views

CVE-2026-38969

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

6.1AI score0.00352EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 8:17 p.m.•5 views

CVE-2025-71385

Netdata before 2.3.1 reflects the user-supplied love query parameter of the api/v2/ilove.svg and api/v3/ilove.svg endpoints verbatim into the generated SVG document into a text element without HTML or XML escaping, and serves the response with Content-Type image/svg+xml. An attacker can craft a U...

6.1CVSS6.1AI score0.0024EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/07/02 8:17 p.m.•5 views

CVE-2026-58381

A flaw was found in GIMP's PSP file format parser. A double-free condition occurs in the readlayerblock function when processing a specially crafted PSP file. This could allow an attacker to cause memory corruption, potentially leading to denial of service or arbitrary code execution...

6.1CVSS6.2AI score0.00118EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-54891

Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Erlang/OTP ssl tlsgenconnection module allows a network-positioned attacker to inject unauthenticated plaintext that the TLS client application later treats as authenticated server data. The...

6.3CVSS6.1AI score0.00135EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-55950

Time-of-check Time-of-use TOCTOU race condition vulnerability in Erlang/OTP ssl dtlspacketdemux module allows an unauthenticated remote attacker to crash all active DTLS sessions on a listener. A DTLS server listener uses a single shared dtlspacketdemux genserver process to route incoming UDP...

8.7CVSS6.1AI score0.00384EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-54887

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS6.1AI score0.00243EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-54886

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Erlang OTP ssh sshsftpd module allows an authenticated SFTP user to render an SFTP channel permanently unresponsive. The handledata/4 function in sshsftpd contains a catch-all clause that accepts channel data of any type. When...

5.3CVSS6.1AI score0.0033EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-55952

The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1.3 ClientHello pre-shared key extension have equal length before passing them to the session ticket handler. In tlshandshake13:handlepresharedkey/3, an OfferedPreSharedKeys record with a...

8.2CVSS6.2AI score0.00487EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2026/07/02 5:17 p.m.•6 views

CVE-2026-53422

Observable Response Discrepancy vulnerability in Erlang OTP ssh sshsftpd module allows an authenticated SFTP user to enumerate the existence of files and directories outside the configured root directory. The SSHFXPREALPATH handler in sshsftpd calls relatefilename/3 with Canonicalize=false, unlik...

4.3CVSS6.2AI score0.00262EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2026/07/02 4:16 p.m.•6 views

CVE-2026-44941

A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root...

8.8CVSS6.1AI score0.00533EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/07/02 3:17 p.m.•6 views

CVE-2026-53357

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix UAF in l2capsockcleanuplisten vs l2capconndel btacceptdequeue unlinks a not-yet-accepted child from the parent accept queue and releasesocks it before returning, so the returned sk has no caller reference and is...

6AI score0.00249EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2026/07/02 3:17 p.m.•6 views

CVE-2026-53358

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: use chan timer to close channels in cleanuplisten l2capchanclose removes the channel from conn-chanl, which must be done under conn-lock. cleanuplisten runs under the parent sklock, so acquiring conn-lock would...

6AI score0.00248EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2026/07/02 12:16 p.m.•6 views

CVE-2026-11946

An unauthenticated remote attacker can exhaust server memory via the GetEndpoints Discovery Service in open62541. The endpointUrl field of GetEndpointsRequest is not validated for length. An attacker can declare an arbitrarily large string up to 4.09 GB via the UInt32 length field delivered acros...

7.5CVSS6.1AI score0.00386EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/07/02 11:16 a.m.•6 views

CVE-2026-54431

In liboauth2 the Demonstrating Proof-of-Possession DPoP verifier accepts a proof whose JSON Web Key jwk header contains private key material. RFC 9449 section 4.3 step 7 requires the verifier to reject such a proof but oauth2tokenverify function returns success for a malformed DPoP proof that...

5.1CVSS6.1AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/02 11:16 a.m.•6 views

CVE-2026-54430

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2josejwksawsalbresolve function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to albbaseurl without URL encoding or path sanitization, and the HTT...

5.1CVSS6.1AI score0.00121EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/02 8:16 a.m.•6 views

CVE-2026-33592

An unauthenticated remote attacker can exhaust server memory via the FindServers Discovery Service in open62541. The serverUris field of FindServersRequest is not validated for length or array size. An attacker can declare an arbitrarily large string up to 3.9 GB delivered across intermediate...

7.5CVSS6.1AI score0.00388EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•8 views

CVE-2026-47709

Unknown description...

6.1AI score0.00025EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-47254

Unknown description...

6.1AI score0.00024EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-50142

Unknown description...

6.1AI score0.00089EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-48029

Unknown description...

6.1AI score0.00035EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-47251

Unknown description...

6.1AI score0.00019EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-47714

Unknown description...

6.1AI score0.00018EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-47247

Unknown description...

6.1AI score0.00041EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20243

A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in ALZ...

7.5CVSS7AI score0.00389EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20213

A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in PE file...

7.5CVSS7AI score0.00463EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20214

A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in FSG...

7.5CVSS7AI score0.00463EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS6.9AI score0.00389EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20215

A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in 7z file...

7.5CVSS7AI score0.00389EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20244

A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in DMG...

7.5CVSS7AI score0.00389EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/02 12:0 a.m.•6 views

CVE-2026-20217

A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in...

7.5CVSS7AI score0.00389EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•4 views

CVE-2026-14385

Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00327EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•5 views

CVE-2026-14431

Type Confusion in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00275EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•4 views

CVE-2026-14397

Out of bounds write in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS6.2AI score0.00253EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•4 views

CVE-2026-14411

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS6.1AI score0.00253EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•4 views

CVE-2026-14423

Type Confusion in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS6.1AI score0.0022EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•5 views

CVE-2026-14387

Integer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS6.1AI score0.00276EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•4 views

CVE-2026-14410

Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.1AI score0.0019EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•5 views

CVE-2026-14407

Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.4AI score0.00319EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/07/01 11:16 p.m.•5 views

CVE-2026-14395

Out of bounds write in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.3AI score0.00275EPSS
Exploits0References3
Total number of security vulnerabilities71772