11 matches found
Astra Linux – Vulnerability in Wireshark
In Wireshark versions 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13, the VMS TCPIP trace file parser crashes. This issue allows for denial of service through malicious capture files...
Astra Linux – Vulnerability in Wireshark
The NetScaler file parser crashes in Wireshark versions 4.0.0 to 4.0.5, and 3.6.0 to 3.6.13. This issue allows for denial of service through crafted capture files...
PT-2026-48311
Name of the Vulnerable Software and Affected Versions Spring Data Commons versions 4.0.0 through 4.0.5 Spring Data Commons versions 3.5.0 through 3.5.11 Spring Data Commons versions 3.4.0 through 3.4.14 Description Applications may be subject to denial of service through resource exhaustion. This...
com.devskiller.friendly-id:friendly-id-openfeign (>=2.0.0-alpha3 <=2.0.0-beta5), io.github.bluetape4k:bluetape4k-spring-boot4-cassandra (>=1.5.0 <=1.7.0) +18 more potentially affected by CVE-2026-40975 via org.springframework.boot:spring-boot-cassandra (>=4.0.0 <=4.0.5)
org.springframework.boot:spring-boot-cassandra MAVEN version =4.0.0, =2.0.0-alpha3, =1.5.0, =2.0.0-M1, =2.0.0-M1, =2.0.0-M1, =2.0.0-M1, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.5 - org.springframework.boot:spring-boot-starter-data-cassan...
com.devskiller.friendly-id:friendly-id-openfeign (>=2.0.0-alpha3 <=2.0.0-beta5), io.github.bluetape4k:bluetape4k-spring-boot4-cassandra (>=1.5.0 <=1.7.0) +18 more potentially affected by CVE-2026-40974 via org.springframework.boot:spring-boot-cassandra (>=4.0.0 <=4.0.5)
org.springframework.boot:spring-boot-cassandra MAVEN version =4.0.0, =2.0.0-alpha3, =1.5.0, =2.0.0-M1, =2.0.0-M1, =2.0.0-M1, =2.0.0-M1, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.5 - org.springframework.boot:spring-boot-starter-data-cassan...
CVE-2026-40970
When configured to use an SSL bundle, Spring Boot's Elasticsearch auto-configuration does not perform hostname verification when connecting to the Elasticsearch server. Affected: Spring Boot 4.0.0–4.0.5; upgrade to 4.0.6 or later per vendor advisory...
PT-2024-3289 · Fortinet · Fortisandbox
Name of the Vulnerable Software and Affected Versions: Fortinet FortiSandbox versions 3.0.5 through 3.0.7 Fortinet FortiSandbox versions 3.2.0 through 3.2.4 Fortinet FortiSandbox versions 4.0.0 through 4.0.5 Fortinet FortiSandbox versions 4.2.0 through 4.2.6 Fortinet FortiSandbox versions 4.4.0...
PT-2023-21818 · Wireshark +2 · Wireshark +2
Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.6.0 through 3.6.13 Wireshark versions 4.0.0 through 4.0.5 Description: The issue is related to a crash in the BLF file parser, which can be exploited to cause a denial of service via a crafted capture file. Recommendation...
PT-2023-21807 · Wireshark +6 · Wireshark +6
Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.6.0 through 3.6.13 Wireshark versions 4.0.0 through 4.0.5 Description: The issue allows for denial of service via a crafted capture file, affecting the VMS TCPIPtrace file parser in Wireshark. Recommendations: For Wiresha...
PT-2023-21828 · Wireshark +6 · Wireshark +6
Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.6.0 through 3.6.13 Wireshark versions 4.0.0 through 4.0.5 Description: The issue allows for a denial of service via a crafted capture file, affecting the NetScaler file parser in Wireshark. Recommendations: For Wireshark...
aa-charlink (>=0.1.1 <=1.0.0), aa-drifters (=0.1.0a0) +223 more potentially affected by CVE-2022-34265 via django (>=4.0.0 <=4.0.5)
django PYPI version =4.0.0, =0.1.1, =1.0.0, =0.1.0a0, =0.11.0a0, =0.1.1, =1.1.0, =3.1.1, =3.6.4, =0.10.0, =1.1.2, =0.2.0, =0.6.1, =0.6.10 and more Source cves: CVE-2022-34265 Source advisory: OSV:PYSEC-2022-213...