CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4671 matches found

Positive Technologies•added 2024/05/08 12:0 a.m.•2 views

PT-2024-24940 · Vitess · Vitess

Name of the Vulnerable Software and Affected Versions: Vitess versions prior to 17.0.7 Vitess versions prior to 18.0.5 Vitess versions prior to 19.0.4 Description: The issue arises when executing a specific query, causing the vtgate to enter an endless loop and consume increasing amounts of memor...

4.9CVSS7.2AI score0.00131EPSS

Exploits0References16

Tenable Nessus•added 2024/04/29 12:0 a.m.•32 views

Fedora 40 : ofono (2024-c42ea059d0)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42ea059d0 advisory. Update to v2.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

8.1CVSS7.7AI score0.00169EPSS

Exploits4References6

Positive Technologies•added 2024/04/25 12:0 a.m.•3 views

PT-2024-4196 · Pypi +2 · Python-Jose +2

Name of the Vulnerable Software and Affected Versions: python-jose versions 3.3.0 and earlier Description: The issue is related to high resource consumption during the decoding of a crafted JSON Web Encryption JWE token, which can be exploited by a remote attacker to cause a denial of service. Th...

6.5CVSS6.5AI score0.00925EPSS

Exploits2References28

CNNVD•added 2024/04/25 12:0 a.m.•1 views

python-jose 安全漏洞

python-jose is a JOSE implementation in Python by the individual developer Michael Davis. A security vulnerability exists in python-jose 3.3.0 and earlier versions that originated from allowing an attacker to cause a denial of service via a specially crafted high-compression rate JSON Web...

5.3CVSS7.1AI score0.00254EPSS

Exploits1References7

OSV•added 2024/04/23 9:15 p.m.•1 views

DEBIAN-CVE-2024-32662

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when WCHAR string is read with twice the size it has and converted to UTF-8, base64 decoded. The string is only used to compare against t...

9.8CVSS9.3AI score0.00244EPSS

Exploits0References1

Tenable Nessus•added 2024/04/23 12:0 a.m.•30 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (etcd) (RHSA-2023:3445)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:3445 advisory. A highly-available key value store for shared configuration Security Fixes: Information discosure via debug function CVE-2021-28235...

9.8CVSS7.1AI score0.00759EPSS

Exploits0References24

Fedora•added 2024/04/19 9:39 p.m.•13 views

[SECURITY] Fedora 40 Update: libopenmpt-0.7.6-1.fc40

libopenmpt is a cross-platform C++ and C library to decode tracked music files modules into a raw PCM audio stream. libopenmpt is based on the player code of the OpenMPT project Open ModPlug Tracker. In order to avoid code base fragmentation, libopenmpt is developed in the same source code...

7.4AI score

Exploits0

SUSE CVE•added 2024/04/19 2:18 a.m.•1 views

SUSE CVE-2024-26851

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackh323: Add protection for bmp length out of range UBSAN load reports an exception of BRK5515 SHIFTISSUE:Bitwise shifts that are out of bounds for their data type. vmlinux getbitmapb=75 + 712 vmlinux...

5.5CVSS6.5AI score0.00007EPSS

Exploits0References17

OSV•added 2024/04/17 11:15 p.m.•1 views

CVE-2023-4235

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliverreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS8.1AI score

Exploits0References2

OSV•added 2024/04/17 11:15 p.m.•1 views

DEBIAN-CVE-2023-4235

8.1CVSS7.6AI score0.00138EPSS

Exploits1References1

OSV•added 2024/04/17 11:15 p.m.•1 views

DEBIAN-CVE-2023-4234

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodesubmitreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS7.6AI score0.00145EPSS

Exploits1References1

OSV•added 2024/04/17 11:15 p.m.•1 views

DEBIAN-CVE-2023-4233

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the smsdecodeaddressfield function during the SMS PDU decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS...

8.1CVSS7.6AI score0.00169EPSS

Exploits0References1

NVD•added 2024/04/17 11:15 p.m.•5 views

CVE-2023-4233

8.1CVSS8.1AI score0.00169EPSS

Exploits0References3

OSV•added 2024/04/17 11:15 p.m.•4 views

CVE-2023-4233

8.1CVSS8.1AI score

Exploits0References3

OSV•added 2024/04/17 11:15 p.m.•3 views

CVE-2023-4234

8.1CVSS8.1AI score

Exploits0References3

OSV•added 2024/04/17 11:15 p.m.•1 views

DEBIAN-CVE-2023-4232

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodestatusreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS7.6AI score0.00127EPSS

Exploits1References1

OSV•added 2024/04/17 11:15 p.m.•5 views

CVE-2023-4232

8.1CVSS8.1AI score

Exploits0References2

NVD•added 2024/04/17 11:15 p.m.•7 views

CVE-2023-4232

8.1CVSS8.2AI score0.00127EPSS

Exploits1References2