|
2581
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-21 and 6.9.13-46, a malicious MIFF file could trigger an overflow when a user opens it in…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-42050
|
2026-05-14 04:38 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2582
|
7.8 |
HIGH
Local
|
adobe
|
media_encoder
|
Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-34639
|
2026-05-14 04:36 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2583
|
7.8 |
HIGH
Local
|
adobe
|
media_encoder
|
Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exp…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-34640
|
2026-05-14 04:36 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2584
|
9.8 |
CRITICAL
Network
|
dani-garcia
|
vaultwarden
|
Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.4, there is a security vulnerability in Vaultwarden that allows bypassing the login brute-force protection if email 2fa is …
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2026-43914
|
2026-05-14 04:35 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2585
|
7.8 |
HIGH
Local
|
adobe
|
after_effects
|
After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-34642
|
2026-05-14 04:35 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2586
|
7.8 |
HIGH
Local
|
adobe
|
after_effects
|
After Effects versions 26.0, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …
|
CWE-787
Out-of-bounds Write
|
CVE-2026-34643
|
2026-05-14 04:35 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2587
|
7.8 |
HIGH
Local
|
adobe
|
after_effects
|
After Effects versions 26.0, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Explo…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-34644
|
2026-05-14 04:35 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2588
|
6.5 |
MEDIUM
Network
|
haxx
|
curl
|
libcurl might in some circumstances reuse the wrong connection when asked to
do an authenticated HTTP(S) request after a Negotiate-authenticated one, when
both use the same host.
libcurl features a …
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-5545
|
2026-05-14 04:31 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2589
|
8.1 |
HIGH
Network
|
dani-garcia
|
vaultwarden
|
Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization invite flo…
|
CWE-863
Incorrect Authorization
|
CVE-2026-43913
|
2026-05-14 04:29 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2590
|
5.3 |
MEDIUM
Network
|
leont
|
crypt\
|
Crypt::Argon2 versions from 0.017 before 0.031 for Perl perform a heap out-of-bounds read in argon2_verify on empty encoded input.
The auto-detect form of argon2_verify passes encoded_len - 1 as the…
|
CWE-126
CWE-191
Buffer Over-read
Integer Underflow (Wrap or Wraparound)
|
CVE-2026-8463
|
2026-05-14 04:23 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
