33 matches found
CVE-2022-31183
fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on...
CVE-2024-31183
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::Hello::unpack. This issue affects libfluid: 0.1.0...
CVE-2025-31183
The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...
CVE-2025-31183
creationtimestamp| type| source ---|---|--- 2025-04-01 03:35:29+00:00| seen| https://t.me/cvedetector/21694 2026-04-02 22:16:05+00:00| seen| Telegram/-SiHi-7t2ljbsWh0Emiw8XzTIBgcOzztbYY7biu1twV718...
CVE-2025-31183
The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data...
CVE-2025-31183
The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...
CVE-2024-31183
creationtimestamp| type| source ---|---|--- 2024-09-18 16:44:55+00:00| seen| https://t.me/cvedetector/5974...
CVE-2024-31183
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::Hello::unpack. This issue affects libfluid: 0.1.0...
CVE-2024-31183 Out-of-bounds Read in libfluid_msg library
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::Hello::unpack. This issue affects libfluid: 0.1.0...
CVE-2024-31183 Out-of-bounds Read in libfluid_msg library
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::Hello::unpack. This issue affects libfluid: 0.1.0...
CVE-2023-31183
CVE-2023-31183 affects Cybonet PineApp Mail Secure. A reflected cross-site scripting (XSS) vulnerability identified in the product, involving an unspecified endpoint. The public entries describe the issue but do not specify affected versions, exploit details, or a patch. CVSS 3.1 base score 6.1 (...
CVE-2023-31183 Cybonet PineApp Mail Secure RXSS vulnerability
Cybonet PineApp Mail Secure A reflected cross-site scripting XSS vulnerability was identified in the product, using an unspecified endpoint...
CVE-2022-31183
The CVE-2022-31183 issue affects fs2-io running on Node.js, where server-mode TLSSocket with requestCert = true incorrectly ignores the setting and skips peer certificate verification. Root cause: the Node.js implementation of fs2-io mishandled mTLS, while the JVM TLS path is unaffected. Impact: ...
CVE-2022-31183 mTLS client verification is skipped in fs2 on Node.js
fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on...
CVE-2022-31183 mTLS client verification is skipped in fs2 on Node.js
fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on...
CVE-2022-31183 mTLS client verification is skipped in fs2 on Node.js
fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on...
co.fs2:fs2-protocols_2.12 (>=3.1-2-8dabe12 <=3.2.10), com.47deg:github4s_2.12 (=0.30.0) +146 more potentially affected by CVE-2022-31183 via co.fs2:fs2-io_2.12 (>=3.1.0 <=3.2-10-421c242)
co.fs2:fs2-io2.12 MAVEN version =3.1.0, =3.1-2-8dabe12, =0.9.0, =0.9.0, =0.3.0, =0.3.0, =0.4.0 and more Source cves: CVE-2022-31183 Source advisory: OSV:GHSA-2CPX-6PQP-WF35...
co.fs2:fs2-protocols_2.13 (>=3.1-2-8dabe12 <=3.2.10), com.47deg:github4s_2.13 (=0.30.0) +184 more potentially affected by CVE-2022-31183 via co.fs2:fs2-io_2.13 (>=3.1.0 <=3.2-10-421c242)
co.fs2:fs2-io2.13 MAVEN version =3.1.0, =3.1-2-8dabe12, =0.9.0, =0.9.0, =0.3.0, =0.3.0, =0.4.0 and more Source cves: CVE-2022-31183 Source advisory: OSV:GHSA-2CPX-6PQP-WF35...
co.fs2:fs2-protocols_3 (>=3.1-2-8dabe12 <=3.2.10), com.47deg:github4s_3 (=0.30.0) +132 more potentially affected by CVE-2022-31183 via co.fs2:fs2-io_3 (>=3.1.0 <=3.2-10-421c242)
co.fs2:fs2-io3 MAVEN version =3.1.0, =3.1-2-8dabe12, =0.1-9d346fe, =0.1-9d346fe, =0.1-9d346fe, =0.0-ba9ae1f, =0.0-c482937 - com.avast.cloud:datadog4s-http4s3 =0.31.1 - com.avast.cloud:datadog4s3 =0.31.1 - com.banno:vault4s3 =9.1.0 - com.disneystreaming.smithy4s:smithy4s-http4s-swagger3...
co.fs2:fs2-protocols_sjs1_2.13 (>=3.1-2-8dabe12 <=3.2.10), com.armanbilge:feral-lambda-api-gateway-proxy-http4s_sjs1_2.13 (>=0.1-2f94f32 <=0.1-f497734) +27 more potentially affected by CVE-2022-31183 via co.fs2:fs2-io_sjs1_2.13 (>=3.1.0 <=3.2-10-421c242)
co.fs2:fs2-iosjs12.13 MAVEN version =3.1.0, =3.1-2-8dabe12, =0.1-2f94f32, =0.1-2f94f32, =0.18.3, =0.18.3, =0.0.5, =0.0.1, =0.1.0, =0.0.1, =6.0.0, =0.23.5, =0.23.5, =1.0.0-M29 and more Source cves: CVE-2022-31183 Source advisory: OSV:GHSA-2CPX-6PQP-WF35...