Retour à la veille
CVE-2026-42958
Score CVSS
7.8
HIGH
Description détaillée
The application contains a use-after-free vulnerability that can be exploited to cause memory corruption while parsing specially crafted files. This could allow an attacker to execute arbitrary code in the context of the current process.
Vecteur d'attaque (CVSS)
Vecteur brut :CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Références et Patchs
Dernières Vulnérabilités
CVE-2026-60002
ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)
VOIR DÉTAILS
CVE-2026-60001
sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay.
VOIR DÉTAILS
CVE-2026-60000
sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service (resource consumption from excessive authentication attempts) because MaxAuthTries was mishandled for GSSAPIAuthentication.
VOIR DÉTAILS
