Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 4126-4150 di 4824 risultati

Pagina 166 di 193

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2025-14523 Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins)	15-04-2026	4126
MSRC Security Update	CVE-2026-33940 Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial	15-04-2026	4127
MSRC Security Update	CVE-2025-61729 Excessive resource consumption when printing error string for host certificate validation in crypto/x509	15-04-2026	4128
MSRC Security Update	CVE-2026-33939 Handlebars.js has Denial of Service via Malformed Decorator Syntax in Template Compilation	15-04-2026	4129
MSRC Security Update	CVE-2026-33941 Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options	15-04-2026	4130
MSRC Security Update	CVE-2026-33938 Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block	15-04-2026	4131
MSRC Security Update	CVE-2026-33891 Forge has Denial of Service via Infinite Loop in BigInteger.modInverse() with Zero Input	15-04-2026	4132
MSRC Security Update	CVE-2026-33896 Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)	15-04-2026	4133
MSRC Security Update	CVE-2026-33895 Forge has signature forgery in Ed25519 due to missing S > L check	15-04-2026	4134
MSRC Security Update	CVE-2026-33671 Picomatch has a ReDoS vulnerability via extglob quantifiers	15-04-2026	4135
MSRC Security Update	CVE-2025-1220 Null byte termination in hostnames	15-04-2026	4136
MSRC Security Update	CVE-2026-1519 Excessive NSEC3 iterations cause high CPU load during insecure delegation validation	15-04-2026	4137
MSRC Security Update	CVE-2026-33636 LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64	15-04-2026	4138
MSRC Security Update	CVE-2026-33416 LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`	15-04-2026	4139
MSRC Security Update	CVE-2025-30258 In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."	15-04-2026	4140
MSRC Security Update	CVE-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF	15-04-2026	4141
MSRC Security Update	CVE-2026-40175 Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain	15-04-2026	4142
MSRC Security Update	CVE-2026-34480 Apache Log4j Core: Silent log event loss in XmlLayout due to unescaped XML 1.0 forbidden characters	15-04-2026	4143
MSRC Security Update	CVE-2026-34479 Apache Log4j 1 to Log4j 2 bridge: Silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters	15-04-2026	4144
MSRC Security Update	CVE-2026-34481 Apache Log4j JSON Template Layout: Improper serialization of non-finite floating-point values in JsonTemplateLayout	15-04-2026	4145
MSRC Security Update	CVE-2026-35201 Discount has an Out-of-bounds Read in rdiscount	15-04-2026	4146
MSRC Security Update	CVE-2026-1502 HTTP client proxy tunnel headers not validated for CR/LF	15-04-2026	4147
MSRC Security Update	CVE-2026-5446 wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse	15-04-2026	4148
MSRC Security Update	CVE-2026-5392 wolfSSL heap OOB read in PKCS7 SignedData streaming	15-04-2026	4149
MSRC Security Update	CVE-2026-5263 URI nameConstraints not enforced in ConfirmNameConstraints()	15-04-2026	4150