|
161
|
5.5 |
MEDIUM
Local
|
opencascade
|
open_cascade_technology
|
An out-of-bounds read vulnerability in VrmlData_IndexedLineSet::TShape in the VRML parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows attackers to cause a denial of service via a crafted VRML…
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-42479
|
2026-05-2 02:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
162
|
6.5 |
MEDIUM
Adjacent
|
frrouting
|
frrouting
|
FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functions where a uint16_t accumulator variable truncates uint32_t …
New
|
CWE-125
CWE-190
Out-of-bounds Read
Integer Overflow or Wraparound
|
CVE-2026-28532
|
2026-05-2 02:48 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
163
|
7.5 |
HIGH
Network
|
opencascade
|
open_cascade_technology
|
An issue was discovered in VrmlData_IndexedFaceSet::TShape in the VRML V2.0 parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows attackers to cause a denial of service via a crafted VRML file. …
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-42478
|
2026-05-2 02:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
164
|
7.1 |
HIGH
Local
|
opencascade
|
open_cascade_technology
|
A heap-based out-of-bounds read vulnerability in RWObj_Reader::read in the OBJ file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 allows user-assisted attackers to cause a denial of service or …
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-42477
|
2026-05-2 02:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
165
|
7.1 |
HIGH
Local
|
opencascade
|
open_cascade_technology
|
Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology (OCCT) V8_0_0_rc5 exist in RWStl_Reader::ReadAscii because buffers returned by Standard_ReadL…
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-42476
|
2026-05-2 02:47 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
166
|
9.8 |
CRITICAL
Network
|
hashcat
|
hashcat
|
A heap-based buffer overflow in hex_to_binary in the PKZIP hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted PKZIP hash fi…
New
|
CWE-787
Out-of-bounds Write
|
CVE-2026-42484
|
2026-05-2 02:45 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
167
|
10.0 |
CRITICAL
Network
|
traefik
|
traefik
|
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is an authentication bypass vulnerability in Traefik's ForwardAuth middleware when trustFo…
New
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2026-35051
|
2026-05-2 02:45 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
168
|
9.8 |
CRITICAL
Network
|
hashcat
|
hashcat
|
A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code v…
New
|
CWE-787
Out-of-bounds Write
|
CVE-2026-42482
|
2026-05-2 02:45 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
169
|
10.0 |
CRITICAL
Network
|
traefik
|
traefik
|
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippe…
New
|
CWE-290
CWE-306
Authentication Bypass by Spoofing
Missing Authentication for Critical Function
|
CVE-2026-39858
|
2026-05-2 02:44 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
170
|
5.3 |
MEDIUM
Network
|
exim
|
exim
|
In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large UTF-8 trailing characters are present (malformed UTF-8 header data). Information might be divulged with…
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-40686
|
2026-05-2 02:44 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
