Aggregator

CVE-2022-50507 | Linux Kernel up to 5.15.86/6.0.16/6.1.2 ntfs3 run_unpack use after free (EUVD-2022-55647 / WID-SEC-2025-2194)

Vuldb Updates
1 month 1 week ago
A vulnerability was found in Linux Kernel up to 5.15.86/6.0.16/6.1.2. It has been declared as critical. Affected by this issue is the function run_unpack of the component ntfs3. Executing a manipulation can lead to use after free. This vulnerability is registered as CVE-2022-50507. The attack requires access to the local network. No exploit is available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-50504 | Linux Kernel up to 6.1.2 powerpc rtas_os_term denial of service (EUVD-2025-32345 / WID-SEC-2025-2194)

Vuldb Updates
1 month 1 week ago
A vulnerability has been found in Linux Kernel up to 6.1.2 and classified as critical. The affected element is the function rtas_os_term of the component powerpc. The manipulation leads to denial of service. This vulnerability is listed as CVE-2022-50504. The attack must be carried out from within the local network. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2022-50503 | Linux Kernel up to 6.1.1 mtd platform_get_resource null pointer dereference (EUVD-2025-32333 / WID-SEC-2025-2194)

Vuldb Updates
1 month 1 week ago
A vulnerability was found in Linux Kernel up to 6.1.1 and classified as critical. Affected is the function platform_get_resource of the component mtd. Such manipulation leads to null pointer dereference. This vulnerability is listed as CVE-2022-50503. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2022-50501 | Linux Kernel up to 6.1.1 media dcoda_iram_alloc return value (EUVD-2025-32349 / WID-SEC-2025-2194)

Vuldb Updates
1 month 1 week ago
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.1.1. The affected element is the function dcoda_iram_alloc of the component media. Such manipulation leads to unchecked return value. This vulnerability is documented as CVE-2022-50501. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

INC

Dark Feed IO
1 month 1 week ago

You must login to view this content

cohenido

INC

Dark Feed IO
1 month 1 week ago

You must login to view this content

cohenido

INC

Dark Feed IO
1 month 1 week ago

You must login to view this content

cohenido

CVE-2026-3391 | FascinatedBox lily up to 2.3 src/lily_emitter.c clear_storages out-of-bounds (Issue 383 / EUVD-2026-9126)

Vuldb Updates
1 month 1 week ago
A vulnerability described as problematic has been identified in FascinatedBox lily up to 2.3. Impacted is the function clear_storages of the file src/lily_emitter.c. The manipulation results in out-of-bounds read. This vulnerability is identified as CVE-2026-3391. The attack is only possible with local access. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-3393 | jarikomppa soloud up to 20200207 Audio File soloud_wav.cpp SoLoud::Wav::loadflac heap-based overflow (Issue 401 / EUVD-2026-9128)

Vuldb Updates
1 month 1 week ago
A vulnerability classified as problematic was found in jarikomppa soloud up to 20200207. The impacted element is the function SoLoud::Wav::loadflac of the file src/audiosource/wav/soloud_wav.cpp of the component Audio File Handler. Such manipulation leads to heap-based buffer overflow. This vulnerability is listed as CVE-2026-3393. The attack must be carried out locally. In addition, an exploit is available. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2025-3525 | GitLab Community Edition/Enterprise Edition up to 18.7.4/18.8.4/18.9.0 CI allocation of resources (Issue 535662 / Nessus ID 300112)

Vuldb Updates
1 month 1 week ago
A vulnerability, which was classified as problematic, has been found in GitLab Community Edition and Enterprise Edition up to 18.7.4/18.8.4/18.9.0. Affected by this issue is some unknown functionality of the component CI. This manipulation causes allocation of resources. This vulnerability is tracked as CVE-2025-3525. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.
vuldb.com

CVE-2026-2845 | GitLab Community Edition/Enterprise Edition up to 18.7.4/18.8.4/18.9.0 allocation of resources (Nessus ID 300128)

Vuldb Updates
1 month 1 week ago
A vulnerability classified as problematic was found in GitLab Community Edition and Enterprise Edition up to 18.7.4/18.8.4/18.9.0. The affected element is an unknown function. Executing a manipulation can lead to allocation of resources. The identification of this vulnerability is CVE-2026-2845. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2026-1662 | GitLab Community Edition/Enterprise Edition up to 18.7.4/18.8.4/18.9.0 Jira Events Endpoint allocation of resources (Issue 588206 / Nessus ID 300129)

Vuldb Updates
1 month 1 week ago
A vulnerability marked as problematic has been reported in GitLab Community Edition and Enterprise Edition up to 18.7.4/18.8.4/18.9.0. This affects an unknown function of the component Jira Events Endpoint. Performing a manipulation results in allocation of resources. This vulnerability was named CVE-2026-1662. The attack may be initiated remotely. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2022-28042 | stb 2.27 stb_image.h stbi__jpeg_huff_decode use after free (Issue 1289 / Nessus ID 300133)

Vuldb Updates
1 month 1 week ago
A vulnerability was found in stb 2.27. It has been classified as critical. This vulnerability affects the function stbi__jpeg_huff_decode of the file stb_image.h. Performing a manipulation results in use after free. This vulnerability is known as CVE-2022-28042. Access to the local network is required for this attack. No exploit is available. To fix this issue, it is recommended to deploy a patch.
vuldb.com

CVE-2026-27798 | ImageMagick up to 6.9.13-39/7.1.2-14 Image Parser out-of-bounds (Nessus ID 300130)

Vuldb Updates
1 month 1 week ago
A vulnerability was found in ImageMagick up to 6.9.13-39/7.1.2-14. It has been classified as problematic. The impacted element is an unknown function of the component Image Parser. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2026-27798. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-1388 | GitLab Community Edition/Enterprise Edition up to 18.7.4/18.8.4/18.9.0 redos (Issue 587560 / Nessus ID 300132)

Vuldb Updates
1 month 1 week ago
A vulnerability identified as problematic has been detected in GitLab Community Edition and Enterprise Edition up to 18.7.4/18.8.4/18.9.0. The affected element is an unknown function. This manipulation causes inefficient regular expression complexity. This vulnerability is handled as CVE-2026-1388. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.
vuldb.com

Managed ad