Lucene search
+L

11 matches found

osv
osv
added 2026/07/06 12:0 a.m.2 views

ALSA-2026:35829 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via...

9.6CVSS6.4AI score0.00478EPSS
Exploits0References4
snyk
snyk
added 2026/03/30 5:29 p.m.3 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the CapFQDN.DecodeFromBytes function of the BGP OPEN Message Handler. An attacker can bypass intended access controls by manipulating the domainNameLen argument remotely, potentially resulting in...

6.3CVSS5.9AI score0.00293EPSS
Exploits0References2
nessus
nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : nodejs:14 (AXSA:2021-2448:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2448:01 advisory. nodejs: Use-after-free on close http2 on stream canceling CVE-2021-22930 nodejs: Use-after-free on close http2 on stream canceling CVE-2021-22940...

9.8CVSS8AI score0.37286EPSS
Exploits5References9
suse
suse
added 2025/10/24 1:25 p.m.7 views

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2025-24294: resolv: insufficient checks on the length of a decompressed domain name when processing a DNS packet can lead to a denial of service due to excessive resource consumption bsc1246430. Patch Instructions: To install this SUSE updat...

6.9CVSS6.9AI score0.00539EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-2469

Malware in sbrugna...

5.8CVSS6AI score0.0138EPSS
Exploits0References17
nessus
nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-43523

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In uClibc and uClibc-ng before 1.0.39, incorrect handling of special characters in domain names returned by DNS servers via gethostbyname, getaddrinfo,...

9.6CVSS8.1AI score0.03261EPSS
Exploits1References2
osv
osv
added 2021/09/23 2:22 p.m.7 views

OPENSUSE-SU-2021:3211-1 Security update for nodejs14

This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames bsc1188881. - CVE-2021-22931: Fixed improper handling of untypical characters in domain names bsc1189370. - CVE-2021-22940: Use after free on close http2 on stream canceling bsc118936...

9.8CVSS7.8AI score0.37286EPSS
Exploits3References11
osv
osv
added 2021/08/31 6:57 a.m.7 views

OPENSUSE-SU-2021:1214-1 Security update for nodejs12

This update for nodejs12 fixes the following issues: Update to 12.22.5: - CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names bsc1189370, bsc1188881 - CVE-2021-22940: Use after free on close http2 on stream canceling bsc1189368 - CVE-2021-22939: Incomplete...

9.8CVSS7.7AI score0.37286EPSS
Exploits3References11
cnvd
cnvd
added 2015/04/13 12:0 a.m.4 views

Asterisk Open Source/Certified Asterisk Certificate Validation Vulnerability

Asterisk is a free software, open source software that implements the functionality of a telephone user switch PBX. Asterisk Open Source has a security vulnerability due to a failure to properly handle domain names in the CN field of an X.509 certificate when registering a SIP TLS device. Allowin...

4.3CVSS6.8AI score0.46156EPSS
Exploits0References1
openvas
openvas
added 2011/12/09 12:0 a.m.33 views

Opera Multiple Vulnerabilities - December11 (Windows)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulndec11win.nasl 7029 2017-08-31 11:51:40Z teissa $ Opera Multiple Vulnerabilities - December11 Windows Authors: Rachana Shetty Copyright: Copyright c 2011 Greenbone Networks Gmb...

10CVSS0.8AI score0.06047EPSS
Exploits0References3
nessus
nessus
added 2004/08/18 12:0 a.m.12 views

ISMail < 1.4.5 Multiple Command Domain Name Handling Overflow

Binary data 2041.prm...

7.5CVSS7.3AI score0.02904EPSS
Exploits0References2
Rows per page
Query Builder