Export limit exceeded: 366372 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 46475 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (46475 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-15173 | 1 Wireshark | 1 Wireshark | 2026-07-10 | 4.7 Medium |
| pcapng file parser crash in Wireshark 4.6.0 to 4.6.6 allows denial of service | ||||
| CVE-2026-59692 | 2 Gstreamer, Redhat | 2 Gstreamer, Enterprise Linux | 2026-07-10 | 7.5 High |
| A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin. During a DTLS handshake, the peer certificate Subject Distinguished Name is printed into a fixed-size 2048-byte stack buffer without bounds checking. A remote unauthenticated attacker can send a certificate with an oversized Subject DN that exceeds the buffer, causing a stack buffer overflow and process crash, resulting in denial of service. | ||||
| CVE-2026-60095 | 1 Vinchin | 1 Backup & Recovery | 2026-07-10 | 6.5 Medium |
| Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attackers to overwrite the saved return address by supplying an oversized _listen_uuid field that is measured via strlen() and copied without bounds checking into a fixed-length stack buffer using strcpy(). Attackers can send a crafted request with a malicious _listen_uuid value to corrupt the stack and achieve process crash or potential control flow hijack without requiring authentication. | ||||
| CVE-2026-15187 | 1 Enquirer | 1 Enquirer | 2026-07-10 | 4.3 Medium |
| A security flaw has been discovered in enquirer up to 2.4.1. Affected is the function Enquirer.set of the component Public Package API. The manipulation of the argument question.name results in improperly controlled modification of object prototype attributes. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report. | ||||
| CVE-2026-57258 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| The PRC file header parsing logic trusts the constructed file structure description information, assumes that the underlying array contains elements and reads them, leading to out-of-bounds reads and application crashes. | ||||
| CVE-2026-57257 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| During the PRC parsing stage, there is a lack of boundary verification for the PRC entity index, which leads to an out-of-bounds read of the entity array. As a result, the application crashes. | ||||
| CVE-2026-57255 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| The application opens a PDF containing an abnormal color space whose attributes reference a valid but semantically malformed function. The function's output is not validated; when subsequently read, it produces an illegal pointer that accesses an out-of-bounds region, crashing the application. | ||||
| CVE-2026-57253 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| An abnormal image object causes the renderer to enter the wrong processing branch. When converting the scan lines, an invalid image buffer pointer is used, resulting in the application crashing. | ||||
| CVE-2026-57251 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 7.8 High |
| The application opens a PDF, but the cloud-like appearance of the construction process lacks proper setting of an upper limit and consistency checks. Out-of-bounds access to the underlying array is exposed, ultimately leading to a crash of the application. | ||||
| CVE-2026-57246 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 7.8 High |
| When dealing with abnormally constructed objects, there is a lack of argument validation; JavaScript triggers signature verification, but the signature plugin does not perform validation when copying the abnormal string, causing the application to crash. | ||||
| CVE-2026-57243 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| During the process of page opening and form formatting, a JavaScript reentrancy results in an inconsistent document status. Subsequently, with outdated page information, the application attempts to access invalid addresses, causing the application to crash. | ||||
| CVE-2026-57241 | 1 Foxitsoftware | 2 Foxit Pdf Editor, Foxit Reader | 2026-07-10 | 6.1 Medium |
| The application opens the PDF, and JavaScript performs operations on the page and the document, causing the page-related objects within the application to lose synchronization; however, the renderer still trusts the outdated page count, and eventually the application crashes due to out-of-bounds access. | ||||
| CVE-2026-56001 | 1 X.org | 1 Libxfont | 2026-07-10 | 8.5 High |
| A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont | ||||
| CVE-2026-56002 | 1 X.org | 2 Libxfont, Libxfont2 | 2026-07-10 | 8.5 High |
| A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server. | ||||
| CVE-2026-56003 | 1 X.org | 2 Libxfont, Libxfont2 | 2026-07-10 | 8.5 High |
| A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties() before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the X server. | ||||
| CVE-2026-59875 | 1 Isaacs | 1 Tar | 2026-07-10 | 5.3 Medium |
| node-tar is a tar archive manipulation library for Node.js. Prior to 7.5.17, node-tar does not strip NUL bytes from PAX path and linkpath records in src/pax.ts, allowing a crafted archive with values to reach fs.lstat or fs.open and terminate the process with an uncaught exception. This issue is fixed in version 7.5.17. | ||||
| CVE-2026-59876 | 1 Protobuf | 1 Protobuf | 2026-07-10 | 4.8 Medium |
| protobufjs compiles protobuf definitions into JavaScript (JS) functions. From 8.2.0 until 8.6.5, the protobufjs Text Format extension parsed string-keyed map entries using ordinary property assignment, allowing a map entry with key __proto__ to change the prototype of the returned map object instead of creating an own map entry in protobufjs/ext/textformat. This issue is fixed in version 8.6.5. | ||||
| CVE-2026-59895 | 1 Hono | 1 Hono | 2026-07-10 | 6.1 Medium |
| Hono is a Web application framework that provides support for any JavaScript runtime. From 4.0.0 before 4.12.27, cx() in hono/css composes class names from plain strings but marks the result as already escaped without HTML-escaping the input, allowing untrusted className values used in a JSX class attribute during server-side rendering to break out of the attribute and inject arbitrary markup. This issue is fixed in version 4.12.27. | ||||
| CVE-2026-54528 | 1 Jupyter | 1 Jupyterlab | 2026-07-10 | 7.1 High |
| JupyterLab Git is a Git extension for JupyterLab. Prior to 0.54.0, jupyterlab-git uses fnmatch.fnmatchcase() in GitHandler.prepare() in jupyterlab_git/handlers.py to enforce excluded_paths, allowing an authenticated user on a case-insensitive filesystem to vary URL path casing and read excluded directories. This issue is fixed in version 0.54.0. | ||||
| CVE-2026-55470 | 1 Hapifhir | 1 Hl7 Fhir Core | 2026-07-10 | 7.5 High |
| HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Prior to 6.9.10, the fix for CVE-2026-45367 incompletely patched the DSTU2 module, leaving FHIRPathEngine.matches() in org.hl7.fhir.dstu2/utils/FHIRPathEngine.java to call raw String.matches(sw) without RegexTimeout protection while replaceMatches() was updated, allowing an unauthenticated attacker to trigger catastrophic regex backtracking and exhaust server CPU. This issue is fixed in version 6.9.10. | ||||