EUVD-2026-3364

In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 2024-02-18, a memory leak occurs due to the broker's failure to validate or reject malformed UTF-8 strings in topic filters. An attacker can exploit this by sending repeated subscription requests with arbitrarily large or invalid filter...

CVE-2025-3364

creationtimestamp| type| source ---|---|--- 2025-04-08 02:45:34+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10815 2025-04-08 03:40:20+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lmbkidr3pn2y 2025-04-08 04:12:47+00:00| seen|...

CVE-2025-3364 HGiga PowerStation - Chroot Escape

The SSH service of PowerStation from HGiga has a Chroot Escape vulnerability, allowing attackers with root privileges to bypass chroot restrictions and access the entire file system...

CVE-2024-3364

creationtimestamp| type| source ---|---|--- 2025-02-14 10:01:37+00:00| seen| Telegram/LbCBeJaEAzRGOv0uCd2e6uIyCV9ZgXmx5q2d5-60jy12NE3O...

CVE-2024-3364

A vulnerability was found in SourceCodester Online Library System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/books/index.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The explo...

CVE-2024-3364 SourceCodester Online Library System index.php cross site scripting

A vulnerability was found in SourceCodester Online Library System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/books/index.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The explo...

CVE-2024-3364 SourceCodester Online Library System index.php cross site scripting

A vulnerability was found in SourceCodester Online Library System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/books/index.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The explo...

CVE-2023-3364

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. A Regular Expression Denial of Service was possible via sending crafted payloads which use...

CVE-2023-3364

creationtimestamp| type| source ---|---|--- 2023-08-02 07:39:04+00:00| seen| https://t.me/cibsecurity/67552...

CVE-2023-3364

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. A Regular Expression Denial of Service was possible via sending crafted payloads which use...

CVE-2023-3364 Inefficient Regular Expression Complexity in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. A Regular Expression Denial of Service was possible via sending crafted payloads which use...

CVE-2023-3364

GitLab CE/EE is affected by CVE-2023-3364: a Regular Expression Denial of Service via crafted payloads using AutolinkFilter to the preview_markdown endpoint. Affected versions start from 8.14 up to 16.0.7, 16.1.0–16.1.2, and 16.2.0–16.2.1; GitLab fixed in 16.0.8, 16.1.3, and 16.2.2 per advisory s...

GitLab 8.14 < 16.0.8 / 16.1 < 16.1.3 / 16.2 < 16.2.2 (CVE-2023-3364)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. A...

SUSE CVE-2011-3364

Incomplete blacklist vulnerability in the svEscape function in settings/plugins/ifcfg-rh/shvar.c in the ifcfg-rh plug-in for GNOME NetworkManager 0.9.1, 0.9.0, 0.8.1, and possibly other versions, when PolicyKit is configured to allow users to create new connections, allows local users to execute...

SUSE CVE-2012-3364

Multiple stack-based buffer overflows in the Near Field Communication Controller Interface NCI in the Linux kernel before 3.4.5 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via incoming frames with crafted length fields...

CVE-2022-3364

creationtimestamp| type| source ---|---|--- 2022-09-30 00:35:22+00:00| seen| https://t.me/cibsecurity/50743 2025-05-20 16:40:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17009...

CVE-2022-3364 No limit in length of "Fullname" parameter results in DOS attack /memory corruption in ikus060/rdiffweb prior to 2.5.0a3 in ikus060/rdiffweb

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3...

CVE-2022-3364 No limit in length of "Fullname" parameter results in DOS attack /memory corruption in ikus060/rdiffweb prior to 2.5.0a3 in ikus060/rdiffweb

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3...

CVE-2022-3364

CVE-2022-3364 affects ikus060/rdiffweb before 2.5.0a3. The issue is an unlimited length of the Fullname parameter, enabling resource exhaustion and potential memory corruption that can lead to a Denial of Service. Root cause: no enforcement of a maximum length for Fullname; impact described as Do...

CVE-2021-3364

Technical details about CVE-2021-3364 are not publicly available in the provided documents. The Connected Fedora package notices mention libtar updates but do not describe the vulnerability. Monitor for future updates.