Improper Check or Handling of Exceptional Conditions vulnerability in Samsung Open Source Escargot allows Input Data Manipulation. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3. More information : https://github.com/Samsung/escargot/pull/1565
Versions of the package exifreader before 4.39.0 are vulnerable to Improper Handling of Highly Compressed Data (Data Amplification) due to decompressing PNG zTXt metadata without enforcing a built-in maximum decompressed output size. When asynchronous...
A flaw was found in Keycloak. An authenticated user can bypass configured WebAuthn policies during credential registration by manipulating client-side JavaScript. This occurs because the server-side processAction() fails to validate that the newly created...
Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3. More information : https://github.com/Samsung/escargot/pull/1565
This affects versions of the package exifreader before 4.39.0. A crafted image containing an ICC mluc tag can set an attacker-controlled record count together with a zero record size. During parsing, ExifReader repeatedly processes...
Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3. More information : https://github.com/Samsung/escargot/pull/1565
Use after free vulnerability in Samsung Open Source Escargot allows Pointer Manipulation. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3. More information : https://github.com/Samsung/escargot/pull/1565
NULL pointer dereference vulnerability in Samsung Open Source Walrus allows Pointer Manipulation. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9. More information : https://github.com/Samsung/walrus/pull/409
The /api/v1/autotranslate.translateMessage endpoint in versions
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. More information : https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2026/2026-04.md
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. More information : https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2026/2026-05.md
NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9. More information...
in OpenHarmony v6.0 and prior versions allow a local attacker arbitrary code execution. More information : https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2026/2026-05.md
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. More information : https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2026/2026-04.md