Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2025/10/21 6:20 a.m.4 views

CVE-2025-12004 The compare API module breaks Extension:Lockdown

Incorrect Permission Assignment for Critical Resource vulnerability in The Wikimedia Foundation Mediawiki - Lockdown Extension allows Privilege Abuse. Fixed in Mediawiki Core Action APIThis issue affects Mediawiki - Lockdown Extension: from master before 1.42...

10CVSS6.6AI score0.00289EPSS
Exploits0References2
CVE
CVE
added 2025/10/21 6:20 a.m.124 views

CVE-2025-12004

CVE-2025-12004 affects MediaWiki with the Lockdown Extension (vulnerable: Lockdown Extension before 1.42). The issue is an incorrect permission assignment for a critical resource, enabling privilege abuse. The vulnerability is fixed in MediaWiki Core Action API (upgrade to a version including the...

10CVSS6.6AI score0.00289EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/21 6:20 a.m.18 views

CVE-2025-12004 The compare API module breaks Extension:Lockdown

Incorrect Permission Assignment for Critical Resource vulnerability in The Wikimedia Foundation Mediawiki - Lockdown Extension allows Privilege Abuse. Fixed in Mediawiki Core Action APIThis issue affects Mediawiki - Lockdown Extension: from master before 1.42...

10CVSS0.00289EPSS
Exploits0References2
Snyk
Snyk
added 2025/03/28 9:41 p.m.5 views

Missing Release of Memory after Effective Lifetime

Overview org.infinispan:infinispan-server-rest is an Infinispan Rest Server. Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime via the REST compare API. A user can trigger an OutOfMemoryError by sending many requests with large 1 MiB POST data ...

7.1CVSS6.9AI score0.00445EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/03/28 9:30 p.m.16 views

Infinispan Potential Out of Memory Error via REST Compare API Buffer API

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS6.9AI score0.00445EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/28 8:34 p.m.7 views

CVE-2024-6875 Infinispan: infinispan: rest compare api has buffer leak

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS7AI score0.00445EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/03/28 8:34 p.m.16 views

CVE-2024-6875

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS7.3AI score0.00445EPSS
Exploits0References3
Rows per page
Query Builder