CVE-2026-4694
Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34,
CVSS
7.5
Alto
EPSS
0.8%
p52
KEV
—
Exploit Today
15
0-100
Publicado: 24 mar 2026 · Última mod.: 15 jul 2026 · CWE-190 · CWE-754
0.8%EPSS · 30 días0.8%
2026-06-302026-07-16
Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9.
- bugzilla.mozilla.orghttps://bugzilla.mozilla.org/show_bug.cgi?id=2018430
- www.mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-20/
- www.mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-21/
- www.mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-22/
- www.mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-23/
- www.mozilla.orghttps://www.mozilla.org/security/advisories/mfsa2026-24/
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:5930
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:5931
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:5932
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:6188
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:6342
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:6917
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7837
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7838
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7839
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7840
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7841
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7842
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7843
- access.redhat.comhttps://access.redhat.com/errata/RHSA-2026:7845
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2020-292387.5 ALT96.6%
——29An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request.8dCVE-2022-250627.5 ALT87.6%
——26TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.8dCVE-2023-458539.8 CRÍ86.6%
——26MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an affected zlib version, and exposes the applicable MiniZip code through its compress API.3dCVE-2026-489337.5 ALT84.9%
——25A flaw in Node.js WebCrypto implementation can crash the process if the input of `subtle.encrypt()` is a multiple of 2GiB.
This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.15hCVE-2026-256397.5 ALT82.9%
——25Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service. This vulnerability is fixed in versions 0.30.3 and 1.13.5.15hCVE-2026-59467.5 ALT76.2%
——23Multiple flaws have been identified in `named` related to the handling of DNS messages whose CLASS is not Internet (`IN`) — for example, `CHAOS` or `HESIOD`, or DNS messages that specify meta-classes (`ANY` or `NONE`) in the question section. Specially crafted requests reaching the affected code paths — recursion, dynamic updates (`UPDATE`), zone change notifications (`NOTIFY`), or processing of `IN`-specific record types in non-`IN` data — can cause assertion failures in `named`.
This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.48, 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.48-S1, and 9.20.9-S1 through 9.20.22-S1.2d