Lucene search
K

16 matches found

OSV
OSV
added 2026/06/09 5:16 a.m.6 views

DEBIAN-CVE-2026-41851

Applications which accept user-supplied Spring Expression Language SpEL expressions may be vulnerable to a Denial of Service DoS attack if the evaluation of a SpEL expression triggers unbounded cache growth. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0...

7.5CVSS5.4AI score0.0036EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/09 3:51 a.m.7 views

CVE-2026-41851

Applications which accept user-supplied Spring Expression Language SpEL expressions may be vulnerable to a Denial of Service DoS attack if the evaluation of a SpEL expression triggers unbounded cache growth. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0...

7.5CVSS5.4AI score0.0036EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/09 3:51 a.m.7 views

CVE-2026-41851 Spring Framework Denial of Service via Unbounded Cache in SpEL

Applications which accept user-supplied Spring Expression Language SpEL expressions may be vulnerable to a Denial of Service DoS attack if the evaluation of a SpEL expression triggers unbounded cache growth. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0...

5.3CVSS5.4AI score0.0036EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-41851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Applications which accept user-supplied Spring Expression Language SpEL expressions may be vulnerable to a Denial of Service DoS attack if the evaluation of a...

7.5CVSS5.5AI score0.0036EPSS
Exploits0References3
OSV
OSV
added 2024/08/14 3:15 p.m.6 views

CVE-2024-41851

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 3:5 p.m.21 views

CVE-2024-41851 Adobe InDesign (Beta) has an integer overflow vulnerability when parsing SVG file

InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.00335EPSS
Exploits0References1
NVD
NVD
added 2024/02/23 9:15 p.m.9 views

CVE-2021-41851

Rejected reason: This is unused...

6.6AI score
Exploits0
Circl
Circl
added 2023/10/10 12:29 p.m.6 views

CVE-2023-41851

creationtimestamp| type| source ---|---|--- 2023-10-10 12:29:52+00:00| seen| https://t.me/cibsecurity/71892...

8.8CVSS8.6AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2023/10/10 9:15 a.m.11 views

CVE-2023-41851

Cross-Site Request Forgery CSRF vulnerability in Dotsquares WP Custom Post Template = 1.0 versions...

8.8CVSS5.8AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/10 8:29 a.m.17 views

CVE-2023-41851 WordPress WP Custom Post Template Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Dotsquares WP Custom Post Template = 1.0 versions...

4.3CVSS9AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2023/10/10 8:29 a.m.38 views

CVE-2023-41851

CVE-2023-41851 is a CSRF vulnerability in the WP Custom Post Template plugin for WordPress, affecting versions

8.8CVSS6.4AI score0.00214EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.11 views

WordPress WP Custom Post Template Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Custom Post Template Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41851 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bc76b275fbb6 Credits Rio Darmawan...

8.8CVSS7AI score0.00214EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/10/13 9:1 a.m.6 views

CVE-2022-41851

creationtimestamp| type| source ---|---|--- 2022-10-13 09:01:23+00:00| seen| https://t.me/cibsecurity/51096...

7.8CVSS7.5AI score0.00232EPSS
Exploits0References1
CVE
CVE
added 2022/10/11 12:0 a.m.61 views

CVE-2022-41851

Siemens JT Open Toolkit (JTTK) and Simcenter Femap are affected by CVE-2022-41851 due to an uninitialized pointer reference when parsing specially crafted JT files. Affected versions: JTTK &lt; 11.1.1.0; Simcenter Femap &lt; 2022.1.3 (V2022.1) and

7.8CVSS7.6AI score0.00232EPSS
Exploits0References1Affected Software2
ICS
ICS
added 2022/10/11 12:0 a.m.34 views

Siemens JT Open Toolkit and Simcenter Femap

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT Open Toolkit and Simcenter Femap Vulnerability: Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the application or lead to arbitrary code...

7.8CVSS7.7AI score0.00232EPSS
Exploits0References11
CVE
CVE
added 1976/01/01 12:0 a.m.11055 views

CVE-2021-41851

CVE-2021-41851 entry is rejected/not used and does not represent an active vulnerability.

6.8AI score
Exploits0
Rows per page
Query Builder