Lucene search
K

13 matches found

OSV
OSV
added 2025/12/22 1:23 p.m.10 views

CLSA-2025-1766409829 mysql: Fix of 33 CVEs

Update to MySQL 8.0.44 CVE-2025-53069 CVE-2025-53042 CVE-2025-53053 CVE-2025-53062 CVE-2025-53044 CVE-2025-53040 CVE-2025-53054 CVE-2025-53045 - MySQL 8.0.43 CVE-2025-50078 CVE-2025-50082 CVE-2025-50083 CVE-2025-50085 CVE-2025-50077 CVE-2025-50088 CVE-2025-50092 CVE-2025-50099 CVE-2025-50086...

7.5CVSS6.9AI score0.01226EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.3 views

Oracle MySQL Cluster 9.x.x < 9.5.0 (October 2025 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2025 CPU advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General libxml2. Easily exploitable vulnerability allows...

9.1CVSS6.4AI score0.01437EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2025/09/15 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2025:03198-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01301EPSS
Exploits7References13
SUSE Linux
SUSE Linux
added 2025/09/12 12:15 p.m.5 views

Security update for curl

This update for curl fixes the following issues: Update to version 8.14.1 jscPED-13055, jscPED-13056. Security issues fixed: CVE-2025-0665: eventfd double close can cause libcurl to act unreliably bsc1236589. CVE-2025-4947: QUIC certificate check is skipped with wolfSSL allows for MITM attacks...

8.3CVSS7.6AI score0.01301EPSS
Exploits7References36
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-5399

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop...

7.5CVSS6.5AI score0.01226EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2025/07/05 12:0 a.m.5 views

curl-8.14.1-4.1 on GA media (moderate)

curl-8.14.1-4.1 on GA media Announcement ID: openSUSE-SU-2025:15213-1 Rating: moderate Cross-References: CVE-2025-5399 CVSS scores: CVE-2025-5399 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-5399 SUSE : 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affect...

6.5CVSS6.4AI score0.01226EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.6 views

Curl 8.13.0 < 8.14.1 DoS (CVE-2025-5399)

The version of Curl installed on the remote host is is missing security update. It is, therefore, affected by a denial of service vulnerability. - Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless...

7.5CVSS6.9AI score0.01226EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/06/09 8:15 a.m.17 views

CVE-2025-5399

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

7.5CVSS7AI score0.01226EPSS
Exploits1References7
OSV
OSV
added 2025/06/07 8:15 a.m.12 views

CVE-2025-5399

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

7.5CVSS7AI score0.01226EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/06/07 8:15 a.m.8 views

CVE-2025-5399

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

7.5CVSS6.8AI score0.01226EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/06/07 7:49 a.m.29 views

CVE-2025-5399 WebSocket endless loop

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

0.01226EPSS
Exploits1References3
CVE
CVE
added 2025/06/07 7:49 a.m.170 views

CVE-2025-5399

CVE-2025-5399 affects libcurl’s WebSocket handling. The defect in curl_ws_send/curl WebSocket code can cause a malicious server to trigger an endless busy-loop, leading to denial of service as the application hangs until process termination. Public details confirm the issue arises from a WebSocke...

7.5CVSS6.3AI score0.01226EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2025/06/07 7:49 a.m.17 views

CVE-2025-5399

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

7.5CVSS7AI score0.01226EPSS
Exploits1
Rows per page
Query Builder