18 matches found
CVE-2026-22465
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SeventhQueen BuddyApp buddyapp allows Reflected XSS.This issue affects BuddyApp: from n/a through = 1.9.2...
CVE-2021-22465
A component of the HarmonyOS has a Heap-based Buffer Overflow vulnerability. Local attackers may exploit this vulnerability to cause Kernel System unavailable...
CVE-2025-22465
Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticated attacker to execute arbitrary javascript in a victim's browser. Unlikely user interaction is required...
CVE-2025-22465
Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticated attacker to execute arbitrary javascript in a victim's browser. Unlikely user interaction is required...
CVE-2025-22465
creationtimestamp| type| source ---|---|--- 2025-04-08 14:47:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10923 2025-05-13 08:52:05+00:00| seen| https://vulnerability.circl.lu/bundle/ff9b5232-52f8-4705-aa8d-8c011a8c756b...
CVE-2025-22465
Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticated attacker to execute arbitrary javascript in a victim's browser. Unlikely user interaction is required...
com.avast.clients.storage:storage-client-hcp_2.13 (>=2.0.0 <=2.2.0), com.avast.cloud:datadog4s-http4s_2.13 (=0.14.0) +95 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.22.0 <=0.22-143-49b5a8d)
org.http4s:http4s-core2.13 MAVEN version =0.22.0, =2.0.0, =0.18.8, =0.17.0, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.15.4, =0.17.0, =0.18.4 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
com.avast.cloud:datadog4s-http4s_2.12 (=0.14.0), com.avast.cloud:datadog4s_2.12 (=0.14.0) +90 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.12 (>=0.22.0 <=0.22-143-49b5a8d)
org.http4s:http4s-core2.12 MAVEN version =0.22.0, =0.18.8, =0.17.0, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.17.0, =0.15.4, =0.15.4, =0.17.0, =0.17.0, =0.15.4, =0.15.4, =0.18.4 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
ch.epfl.bluebrain.nexus:cli_2.13 (>=1.5.0 <=1.6.1), com.47deg:github4s_2.13 (>=0.22.0 <=0.28.5) +299 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.21.0-M1 <=0.21.33)
org.http4s:http4s-core2.13 MAVEN version =0.21.0-M1, =1.5.0, =0.22.0, =0.2.0, =0.2.0, =0.1.0, =1.3.1, =1.3.1, =0.6.1, =0.13.1, =0.11.2, =0.12.1, =0.7.2, =0.13.1, =0.13.2 - com.avast.cloud:datadog4s3.0.0-M2 =0.11.1 and more Source cves: CVE-2023-22465 Source advisory: OSV:GHSA-54W6-VXFH-FW7F...
ch.j3t:zio-prefetcher_2.13 (=0.8.0-RC6), com.47deg:energy-monitor-persistence-app_2.13 (=0.2.0) +202 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.13 (>=0.23.0 <=0.23.16)
org.http4s:http4s-core2.13 MAVEN version =0.23.0, =0.29.1, =0.31.0, =0.5.0, =0.9.4, =0.1-0b4f7b6, =0.1-e4b7179 - com.avast.cloud:datadog4s-http4s2.13 =0.31.0 - com.avast.cloud:datadog4s2.13 =0.31.0 - com.banno:vault4s2.13 =9.0.0 and more Source cves: CVE-2023-22465 Source advisory:...
com.47deg:embedded-cassandra-core_2.12 (=0.0.7), com.47deg:github4s_2.12 (>=0.22.0 <=0.28.5) +295 more potentially affected by CVE-2023-22465 via org.http4s:http4s-core_2.12 (>=0.20.0-M1 <=0.21.33)
org.http4s:http4s-core2.12 MAVEN version =0.20.0-M1, =0.22.0, =0.13.2, =0.2.6, =0.3.0, =0.2.0, =0.1.0, =0.6.1, =0.6.1, =0.18.3, =0.18.7 - com.avast:datadog4s-http4s2.12 =0.6.0 - com.avast:datadog4s2.12 =0.6.0 - com.avast:scala-server-toolkit-http4s-blaze-client2.12 =0.1.3 -...
CVE-2023-22465
creationtimestamp| type| source ---|---|--- 2023-01-04 18:18:17+00:00| seen| https://t.me/cibsecurity/55895 2025-03-10 21:39:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7063...
CVE-2023-22465 Http4s has fatal error parsing User-Agent and Server headers
Http4s is a Scala interface for HTTP services. Starting with version 0.1.0 and prior to versions 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38, the User-Agent and Server header parsers are susceptible to a fatal error on certain inputs. In http4s, modeled headers are lazily parsed, so this only applie...
CVE-2023-22465 Http4s has fatal error parsing User-Agent and Server headers
Http4s is a Scala interface for HTTP services. Starting with version 0.1.0 and prior to versions 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38, the User-Agent and Server header parsers are susceptible to a fatal error on certain inputs. In http4s, modeled headers are lazily parsed, so this only applie...
CVE-2023-22465
Http4s (Scala HTTP services) has a vulnerability where the User-Agent and Server header parsers can fatal‑error on certain inputs. Affected versions include 0.1.0 up to but not including 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38. Fixes are released in 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38. As a...
CVE-2022-22465
CVE-2022-22465 affects IBM Security Access Manager Appliance (ISAM) / IBM Security Verify Access Appliance versions 10.0.0.0–10.0.3.0. The issue is improper access permissions that could allow a local user to obtain elevated privileges. IBM’s bulletin confirms the vulnerability and provides a fix...
CVE-2021-22465
A component of the HarmonyOS has a Heap-based Buffer Overflow vulnerability. Local attackers may exploit this vulnerability to cause Kernel System unavailable...
CVE-2021-22465
The CVE-2021-22465 entry relates to a heap-based buffer overflow in a HarmonyOS component. Impact described as local attackers potentially causing kernel system unavailability. Connected sources (including Red Hat and CNVD variants) consistently identify the same issue without additional technica...