Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-0150 2026-06-16 N/A 0.0 In ExecuteGraph command handler of EdgeTPU firmware, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege…
CVE-2026-0149 2026-06-16 N/A 0.0 In RtpSession::rtpSendRtcpPacket, there is a possible OOB write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User…
CVE-2026-0148 2026-06-16 N/A 0.0 In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional…
CVE-2026-0147 2026-06-16 N/A 0.0 In __mfc_core_nal_q_get_dec_metadata_sei_nal of mfc_core_nal_q.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional…
CVE-2026-0146 2026-06-16 N/A 0.0 In mfc_core_get_dec_metadata_sei_nal of mfc_core_reg_api.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional…
CVE-2026-0145 2026-06-16 N/A 0.0 In keymint, there is a possible Permission Bypass due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges…
CVE-2026-0144 2026-06-16 N/A 0.0 In writeAocCommand of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This could lead to remote denial of service with no additional…
CVE-2026-0143 2026-06-16 N/A 0.0 In lwis_device_external_event_emit of lwis_event.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges…
CVE-2026-0142 2026-06-16 N/A 0.0 In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution…
CVE-2026-0141 2026-06-16 N/A 0.0 In decodeAppPacket of RtcpAppPacket.cpp, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges…
CVE-2026-0140 2026-06-16 N/A 0.0 In RtpPacket::decodePacket, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction…
CVE-2026-0139 2026-06-16 N/A 0.0 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges…
CVE-2026-0138 2026-06-16 N/A 0.0 In lwis_io_buffer_write of lwis_io_buffer.c, there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges…
CVE-2026-0137 2026-06-16 N/A 0.0 In edgetpu_sync_fence_group_shutdown() of edgetpu-dmabuf.c, there is a possible elevation of privilege due to a use after free. This could lead to local escalation of privilege with System execution…
CVE-2026-0136 2026-06-16 N/A 0.0 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution…
CVE-2026-0135 2026-06-16 N/A 0.0 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote code execution with no additional execution privileges…
CVE-2026-0134 2026-06-16 N/A 0.0 In PostWipeData of recovery_ui.cpp, there is a possible data persistence issue after a factory reset due to a logic error in the code. This could lead to local…
CVE-2026-0133 2026-06-16 N/A 0.0 In smmu_attach_dev of arm-smmu-v3.c, there is a possible way to sign malicious Android Runtime bootclass artifacts due to a missing permission check. This could lead to local escalation…
CVE-2026-0132 2026-06-16 N/A 0.0 In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges…
CVE-2026-0131 2026-06-16 N/A 0.0 In RtpPacket::decodePacket, there is a possible out of bounds access due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges…
CVE-2026-0130 2026-06-16 N/A 0.0 In RtcpChunk::decodeRtcpChunk, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges…
CVE-2026-0129 2026-06-16 N/A 0.0 In RtcpByePacket::decodeByePacket, there is a possible due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is…
CVE-2026-0128 2026-06-16 N/A 0.0 In RtcpFbPacket::decodeRtcpFbPacket, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed.…
CVE-2026-0127 2026-06-16 N/A 0.0 In NrmmMsgCodec::DecodeUPUTransparentContext of cn_NrmmDecoder.cpp, there is a possible out-of-bounds read due to memory corruption. This could lead to remote denial of service causing a communication processor crash with…
CVE-2026-0126 2026-06-16 N/A 0.0 In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges…
CVE-2026-0125 2026-06-16 N/A 0.0 In multiple functions of vpu_ioctl.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional…
CVE-2026-50656 2026-06-16 HIGH 7.8 Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ". We are working to provide…
CVE-2026-4367 2026-06-16 MEDIUM 5.5 A flaw was found in libXpm. A local user with low privileges could exploit an Out-of-Bounds Read vulnerability in the `xpmNextWord()` function by processing a specially crafted or…
CVE-2026-12322 2026-06-16 MEDIUM 5.4 Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
CVE-2026-12117 2026-06-16 N/A 0.0 Improper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated vault member to enumerate social login entry metadata to which they are…
CVE-2026-12105 2026-06-16 N/A 0.0 Improper access control in Devolutions Server 2026.2.5, 2026.1.21 allows an authenticated user to access attachments via folder duplication with inherited permissions.
CVE-2026-11890 2026-06-16 N/A 0.0 Improper access control in PAM account discovery results in Devolutions Server 2026.2.5, 2026.1.21 allows an authenticated user to retrieve account discovery scan results.
CVE-2026-47964 2026-06-16 HIGH 7.8 DNG SDK versions 1.7.1 2536 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current…
CVE-2026-47963 2026-06-16 MEDIUM 5.5 DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability…
CVE-2026-47934 2026-06-16 MEDIUM 5.5 DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability…
CVE-2026-47927 2026-06-16 MEDIUM 5.5 DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability…
CVE-2024-39575 2026-06-16 HIGH 7.4 update_disk_psu_baseline.sh requires password in plain text
CVE-2026-12321 2026-06-16 MEDIUM 5.4 JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
CVE-2026-12320 2026-06-16 MEDIUM 4.3 Information disclosure in the Password Manager component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
CVE-2026-12319 2026-06-16 MEDIUM 6.5 Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
CVE-2026-24228 2026-06-16 HIGH 7.8 NVIDIA NeMo Framework for Linux contains a vulnerability where an attacker may cause deserialization of untrusted data. A successful exploit of this vulnerability may lead to code execution,…
CVE-2026-24155 2026-06-16 HIGH 7.8 NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and…
CVE-2026-12299 2026-06-16 MEDIUM 5.4 JIT miscompilation in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12.
CVE-2026-12289 2026-06-16 HIGH 8.8 Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12.
CVE-2026-12162 2026-06-16 MEDIUM 5.5 Improper host validation in the social login autofill feature in Devolutions Remote Desktop Manager 2026.2.8 allows an attacker to disclose stored social login credentials via a crafted web…
CVE-2026-12161 2026-06-16 HIGH 8.8 Improper input validation in the SSH Elevate Shell feature in Devolutions Remote Desktop Manager 2026.2.7 allows an authenticated user with permission to create or modify a shared SSH…
CVE-2026-12298 2026-06-16 MEDIUM 5.4 Memory safety bug fixed in Thunderbird 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12.
CVE-2026-1767 2026-06-16 MEDIUM 5.6 A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing…
CVE-2026-1766 2026-06-16 MEDIUM 5.6 A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted…
CVE-2026-12316 2026-06-16 CRITICAL 9.1 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152 and Thunderbird 152.
« Anterior Página 90 de 4528 Siguiente »