Posts of last 24 hours
A vulnerability, which was classified as critical, was found in Linux Kernel up to 7.0.12. Affected by this issue is the function klsi_105_prepare_write_buffer of the component USB. The manipulation of the argument write_fifo results in out-of-bounds write.
This vulnerability is cataloged as CVE-2026-53194. The attack must originate from the local network. There is no exploit available.
You should upgrade the affected component.
https://vuldb.com/vuln/373705
A vulnerability was found in Linux Kernel up to 7.0.12. It has been declared as critical. Impacted is the function isert_login_recv_done of the file drivers/infiniband/ulp/isert/ib_isert.c of the component IB. Executing a manipulation of the argument negative can lead to out-of-bounds read.
This vulnerability appears as CVE-2026-53176. The attack may be performed from remote. There is no available exploit.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/373709
A vulnerability was found in ImageMagick up to 7.1.2-14. It has been classified as critical. The affected element is an unknown function of the component SVG Decoder. This manipulation causes escaping of output.
This vulnerability is registered as CVE-2026-56379. Remote exploitation of the attack is possible. No exploit is available.
Upgrading the affected component is recommended.
https://vuldb.com/vuln/372896
A vulnerability was found in ImageMagick up to 7.1.2-14. It has been rated as problematic. This affects an unknown function of the file coders/txt.c of the component TXT File Handler. Performing a manipulation of the argument texture results in memory leak.
This vulnerability is reported as CVE-2026-56371. The attack is possible to be carried out remotely. No exploit exists.
Upgrading the affected component is advised.
https://vuldb.com/vuln/372898
A vulnerability classified as problematic was found in Google Chrome. Affected by this issue is some unknown functionality of the component Autofill. The manipulation results in permissive cross-domain policy with untrusted domains.
This vulnerability is identified as CVE-2026-13022. The attack can be executed remotely. There is not any exploit available.
Upgrading the affected component is advised.
https://vuldb.com/vuln/373507
A vulnerability identified as critical has been detected in iCagenda Extension up to 3.9.14/4.0.7 on Joomla. This impacts an unknown function. This manipulation causes improper access controls.
This vulnerability is registered as CVE-2026-48939. Remote exploitation of the attack is possible. No exploit is available.
https://vuldb.com/vuln/372536
A vulnerability identified as problematic has been detected in Cisco Identity Services Engine Software. This impacts an unknown function. This manipulation causes cross site scripting.
This vulnerability is handled as CVE-2026-20132. The attack can be initiated remotely. There is not any exploit available.
You should upgrade the affected component.
https://vuldb.com/vuln/357752
A vulnerability categorized as critical has been discovered in Cisco Identity Services Engine Software. This affects an unknown function of the component CLI. The manipulation results in command injection.
This vulnerability is known as CVE-2026-20136. Attacking locally is a requirement. No exploit is available.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/357751
A vulnerability labeled as critical has been found in zephyrproject zephyr up to 4.4.x. The affected element is the function net_tcp_foreach of the file subsys/net/ip/tcp.c. The manipulation results in use after free.
This vulnerability is identified as CVE-2026-10634. The attack can only be performed from the local network. There is not any exploit available.
The affected component should be upgraded.
https://vuldb.com/vuln/370927
A vulnerability described as critical has been identified in zephyrproject zephyr up to 4.4.x. The impacted element is the function net_try_send_data of the file subsys/net/ip/icmpv6.c of the component Network Interface. The manipulation results in use after free.
This vulnerability is cataloged as CVE-2026-10638. The attack may be launched remotely. There is no exploit available.
Upgrading the affected component is recommended.
https://vuldb.com/vuln/371335