|
1331
|
8.4 |
HIGH
Local
|
-
|
-
|
Faleemi Desktop Software 1.8 contains a local buffer overflow vulnerability in the System Setup dialog that allows attackers to bypass DEP protections through structured exception handling exploitati…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-25691
|
2026-04-16 00:00 |
2026-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1332
|
8.4 |
HIGH
Local
|
-
|
-
|
R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payl…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-25695
|
2026-04-16 00:00 |
2026-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1333
|
5.0 |
MEDIUM
Local
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. In 43.0.0, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be trig…
|
CWE-416
Use After Free
|
CVE-2026-34983
|
2026-04-15 23:49 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1334
|
7.8 |
HIGH
Local
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap acc…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2026-34971
|
2026-04-15 23:10 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1335
|
9.9 |
CRITICAL
Network
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime with its Winch (baseline) non-default compiler backend may allow properly constructed guest Wasm to a…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2026-34987
|
2026-04-15 22:41 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1336
|
6.3 |
MEDIUM
Network
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. From 28.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of its pooling allocator contains a bug where in certain configurations the contents…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-34988
|
2026-04-15 22:14 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1337
|
7.5 |
HIGH
Network
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler backend contains a bug where translating the table.grow operator causes the result t…
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2026-35186
|
2026-04-15 22:04 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1338
|
5.4 |
MEDIUM
Network
|
bytecodealliance
|
wasmtime
|
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of transcoding strings between components contains a bug where the return value of a gues…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-35195
|
2026-04-15 22:00 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1339
|
9.8 |
CRITICAL
Network
|
sonos
|
era_300_firmware
|
Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos Era 300. A…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-4149
|
2026-04-15 21:26 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1340
|
6.8 |
MEDIUM
Physics
|
samsung
|
android
|
Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-21009
|
2026-04-15 21:23 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
