Lucene search
K

256 matches found

Debian CVE
Debian CVE
added 2025/01/14 12:0 a.m.11 views

CVE-2024-57664

An issue in the sqlggroupnode component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

7.5CVSS7.5AI score0.00547EPSS
Exploits1
Debian CVE
Debian CVE
added 2025/01/14 12:0 a.m.7 views

CVE-2024-57642

An issue in the dfeinxopcoldeftable component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

7.5CVSS7.5AI score0.00722EPSS
Exploits1
Debian CVE
Debian CVE
added 2025/01/14 12:0 a.m.10 views

CVE-2024-57651

An issue in the jpadd component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

7.5CVSS7.5AI score0.0088EPSS
Exploits1
CVE
CVE
added 2025/01/14 12:0 a.m.45 views

CVE-2024-57663

The CVE-2024-57663 issue affects the virtuoso-opensource package, specifically the sqlg_place_dpipes component in version 7.2.11. The vulnerability allows attackers to trigger a Denial of Service (DoS) via crafted SQL statements. Public advisories (Amazon Linux 2 ALAS/ALAS2-2755) indicate the aff...

7.5CVSS7.6AI score0.00662EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2025/01/14 12:0 a.m.83 views

CVE-2024-57660

CVE-2024-57660 affects virtuoso-opensource v7.2.11 (sqlo_expand_jts). The vulnerability allows remote attackers to cause a Denial of Service via crafted SQL statements. Root cause is an issue in the sqlo_expand_jts component, leading to availability impact. Public advisories confirm the issue and...

7.5CVSS7.6AI score0.00684EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/14 12:0 a.m.13 views

CVE-2024-57646

An issue in the psiginfo component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

0.00551EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/19 7:31 p.m.18 views

CVE-2024-52360 IBM Concert Software SQL injection

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database...

7.6CVSS7.7AI score0.00437EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.11 views

The vulnerability of the __nss_database_lookup component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the nssdatabaselookup component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially create...

7.8CVSS7.3AI score0.00909EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.5 views

The vulnerability of the mp_box_copy component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the mpboxcopy component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...

7.8CVSS7.3AI score0.00905EPSS
Exploits1References5Affected Software3
OSV
OSV
added 2024/06/13 8:32 a.m.13 views

USN-6832-1 virtuoso-opensource vulnerabilities

Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly handled certain crafted SQL statements. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-31607, CVE-2023-31608, CVE-2023-31609, CVE-2023-31610, CVE-2023-31611,...

7.5CVSS7.2AI score0.00909EPSS
Exploits16References17
Veracode
Veracode
added 2024/05/13 2:31 p.m.15 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dfeqexplist component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.16 views

SQL Injection

openlink virtuoso-opensource is vulnerable to a Denial of Service DoS attack. The vulnerability is due to an issue in the libclongjmp component, which allows attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.5AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.13 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dksetdelete component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.17 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the schnametoobject component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.14 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the sqlcuniondtwrap component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.13 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the chasharray component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.16 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the artmdivint component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.18 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dfeunitcolloci component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 12:43 p.m.13 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the sqloqueryspec component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 12:41 p.m.11 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the kcvarcol component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder