gnu

1,238 tracked vulnerabilities.

CVE-2026-40553 MEDIUM
Stack-based buffer overflow in gawk
Jul 13, 2026
CVE-2026-40469 MEDIUM
Heap buffer overflow in gawk
Jul 13, 2026
CVE-2026-40468 LOW
Heap buffer overflow in gawk
Jul 13, 2026
CVE-2026-40467 MEDIUM
Use after free in gawk
Jul 13, 2026
CVE-2026-15520 MEDIUM
GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow
Jul 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-15184 LOW
GNU LibreDWG DWG File dwg.c dwg_next_entity null pointer dereference
Jul 09, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-15182 MEDIUM
GNU LibreDWG BMP Image dwg.c dwg_bmp heap-based overflow
Jul 09, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-56289 MEDIUM
Loop with Unreachable Exit Condition in GNU patch
Jul 09, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-56288 MEDIUM
NULL Pointer Dereference in GNU patch
Jul 09, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-58472 MEDIUM
GNU Wget 1.25.0 Heap Buffer Overflow via HTML Attribute Encoding
Jul 07, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-58471 MEDIUM
GNU Wget 1.25.0 Heap Buffer Overflow via convert_fname() in url.c
Jul 07, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-58470 MEDIUM
GNU Wget 1.25.0 Integer Overflow via Content-Range Header Parsing
Jul 07, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-58469 HIGH
GNU Wget 1.25.0 Heap Buffer Underread via Metalink URL Parsing
Jul 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-41992 HIGH
Global Buffer Overflow in GNU gzip
Jun 29, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-41991 MEDIUM
Predictable Temporary File in GNU gzip
Jun 29, 2026
CVSS 4.7
EPSS 0.00
CVE-2026-9155 HIGH
OS Command Injection in Rapid7 InsightConnect Sed Plugin via expression parameter.
Jun 25, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-9154 HIGH
Arbitrary File Write in Rapid7 InsightConnect Sed Plugin
Jun 25, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-9153 MEDIUM
Arbitrary File Read in Rapid7 InsightConnect Sed Plugin
Jun 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-57053 MEDIUM
GNU Libidn < 1.44 - Improper Validation of Specified Quantity in Input
Jun 23, 2026
CVSS 4.0
EPSS 0.00
CVE-2026-56968 LOW
Gnu Sasl < 2.2.4 - Numeric Range Comparison Without Minimum Check
Jun 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-56355 LOW
GNU Savane < 3.17 - Incorrect Behavior Order
Jun 20, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-9605 HIGH
GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow
May 27, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-9530 LOW
GNU LibreDWG Dwgbmp Utility decode.c read_2004_compressed_section out-of-bounds
May 26, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-9529 LOW
GNU LibreDWG Dwggrep Utility dwggrep.c match_BLOCK_HEADER null pointer dereference
May 26, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-9504 LOW
GNU LibreDWG Dwggrep Utility dwggrep.c bit_convert_TU out-of-bounds
May 25, 2026
CVSS 3.3
EPSS 0.00