Lucene search
K

7 matches found

Snyk
Snyk
added 2026/05/07 1:26 a.m.7 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the RESTClientGetter configuration. An attacker can gain unauthorized access to sensitive resources and escalate privileges by exploiting incomplete ServiceAccount impersonation, allowing them to read secrets...

9.9CVSS5.8AI score0.00379EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/26 6:32 p.m.5 views

Use of Incorrectly-Resolved Name or Reference

Overview srvx is an Universal Server. Affected versions of this package are vulnerable to Use of Incorrectly-Resolved Name or Reference in the FastURL function due to a pathname parsing discrepancy when handling absolute URIs with non-standard schemes in raw HTTP requests. An attacker can bypass...

9.1CVSS5.9AI score0.00388EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/26 5:21 p.m.25 views

CVE-2026-33732 srvx is vulnerable to middleware bypass via absolute URI in request line

srvx is a universal server based on web standards. Prior to version 0.11.13, a pathname parsing discrepancy in srvx's FastURL allows middleware bypass on the Node.js adapter when a raw HTTP request uses an absolute URI with a non-standard scheme e.g. file://. Starting in version 0.11.13, the...

4.8CVSS0.00246EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.8 views

srvx 安全漏洞

Srvx is a web-based general server developed by H3 Open Source. Versions of Srvx prior to 0.11.13 contained security vulnerabilities. These vulnerabilities were caused by differences in path name resolution in FastURL, which could allow middleware to bypass security measures...

6.5CVSS5.8AI score0.00246EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.4 views

SUSE CVE-2010-4523

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to 1 card-acos5.c, 2 card-atrust-acos.c, and 3 card-starcos.c...

7.2CVSS8AI score0.00862EPSS
Exploits1References4
Prion
Prion
added 2011/01/07 8:0 p.m.15 views

Stack overflow

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to 1 card-acos5.c, 2 card-atrust-acos.c, and 3 card-starcos.c...

7.2CVSS8AI score0.00862EPSS
Exploits1References19Affected Software1
CVE
CVE
added 2011/01/07 7:0 p.m.105 views

CVE-2010-4523

OpenSC (libopensc) is affected by CVE-2010-4523: multiple stack-based buffer overflows in OpenSC

7.2CVSS7.4AI score0.00862EPSS
Exploits1References19Affected Software1
Rows per page
Query Builder