11 matches found
CVE-2026-42965
creationtimestamp| type| source ---|---|--- 2026-05-31 01:00:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4ehrbbpg22...
CVE-2025-42965
creationtimestamp| type| source ---|---|--- 2025-07-08 03:57:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltgfv3tl2e25...
CVE-2025-42965
SAP CMC Promotion Management allows an authenticated attacker to enumerate internal network systems by submitting crafted requests during job source configuration. By analysing response times for various IP addresses and ports, the attacker can infer valid network endpoints. Successful exploitati...
CVE-2025-42965
CVE-2025-42965 affects SAP CMC Promotion Management and is an SSRF issue where an authenticated attacker can enumerate internal network endpoints by sending crafted requests during job source configuration and analyzing response times. This can lead to information disclosure (confidentiality impa...
CVE-2025-42965 Server Side Request Forgery(SSRF) vulnerability in SAP BusinessObjects BI Platform Central Management Console Promotion Management Application
SAP CMC Promotion Management allows an authenticated attacker to enumerate internal network systems by submitting crafted requests during job source configuration. By analysing response times for various IP addresses and ports, the attacker can infer valid network endpoints. Successful exploitati...
CVE-2022-42965
An exponential ReDoS Regular Expression Denial of Service can be triggered in the snowflake-connector-python PyPI package, when an attacker is able to supply arbitrary input to the undocumented getfiletransfertype method...
apache-airflow-providers-snowflake (>=2.4.0 <=2.5.1rc1), arreyy (=0.0.1) +69 more potentially affected by CVE-2022-42965 via snowflake-connector-python (>=1.7.11 <=2.8.1)
snowflake-connector-python PYPI version =1.7.11, =2.4.0, =0.0.4, =20230717.1.0, =0.1.0, =0.4.0, =0.5.1, =1.0.5, =0.5.19, =0.1.1, =0.48.0, =0.15.3, =0.19.1a7, =0.1.1, =0.1.4 and more Source cves: CVE-2022-42965 Source advisory: OSV:GHSA-4R6J-FWCX-94CF...
CVE-2022-42965
An exponential ReDoS Regular Expression Denial of Service can be triggered in the snowflake-connector-python PyPI package, when an attacker is able to supply arbitrary input to the undocumented getfiletransfertype method...
CVE-2022-42965 Exponential ReDoS in snowflake-connector-python leads to denial of service
An exponential ReDoS Regular Expression Denial of Service can be triggered in the snowflake-connector-python PyPI package, when an attacker is able to supply arbitrary input to the undocumented getfiletransfertype method...
CVE-2022-42965
CVE-2022-42965 affects the Python Snowflake connector (snowflake-connector-python). The vulnerability is an exponential ReDoS in the undocumented get_file_transfer_type method, allowing a network attacker to trigger a denial of service by supplying crafted input. Underlying cause: a vulnerable re...
CVE-2022-42965 Exponential ReDoS in snowflake-connector-python leads to denial of service
An exponential ReDoS Regular Expression Denial of Service can be triggered in the snowflake-connector-python PyPI package, when an attacker is able to supply arbitrary input to the undocumented getfiletransfertype method...