CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

316 matches found

Debian CVE•added 2024/04/17 10:14 a.m.•20 views

CVE-2024-26848

Removed by vendor...

7.1AI score

Exploits0

Prion•added 2023/11/07 6:15 p.m.•17 views

Design/Logic Flaw

Cosign is a sigstore signing tool for OCI containers. Cosign is susceptible to a denial of service by an attacker controlled registry. An attacker who controls a remote registry can return a high number of attestations and/or signatures to Cosign and cause Cosign to enter a long loop resulting in...

5CVSS7.1AI score0.0064EPSS

Exploits1References2Affected Software1

AlpineLinux•added 2023/11/07 5:30 p.m.•20 views

CVE-2023-46737

5.3CVSS5AI score0.0064EPSS

Exploits1

SUSE CVE•added 2023/08/08 1:32 a.m.•1 views

SUSE CVE-2023-4010

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

4.6CVSS6.3AI score0.00516EPSS

Exploits1References3

Cvelist•added 2023/07/31 4:22 p.m.•33 views

CVE-2023-4010 Kernel: usb: hcd: malformed usb descriptor leads to infinite loop in usb_giveback_urb()

4.6CVSS4.8AI score0.00516EPSS

Exploits1References3

RedHat Linux•added 2023/03/20 9:15 a.m.•2 views

nodejs-handlebars: an endless loop while processing specially-crafted templates leads to DoS

A flaw was found in nodejs-handlebars, where affected versions of handlebars are vulnerable to a denial of service. The package's parser may be forced into an endless loop while processing specially-crafted templates. This flaw allows attackers to exhaust system resources, leading to a denial of...

7.8CVSS7.2AI score0.03747EPSS

Exploits0References5

UbuntuCve•added 2023/02/23 10:15 p.m.•15 views

CVE-2023-25824

Modgnutls is a TLS module for Apache HTTPD based on GnuTLS. Versions from 0.9.0 to 0.12.0 including did not properly fail blocking read operations on TLS connections when the transport hit timeouts. Instead it entered an endless loop retrying the read operation, consuming CPU resources. This coul...

7.5CVSS6.9AI score0.01091EPSS

Exploits1References5

F5 Networks•added 2023/02/21 6:47 p.m.•88 views

K51753557: PHP vulnerability CVE-2015-9253

Security Advisory Description An issue was discovered in PHP through 7.2.2. The php-fpm master process restarts a child process in an endless loop when using program execution functions e.g., passthru, exec, shellexec, or system with a non-blocking STDIN stream, causing this master process to...

6.8CVSS7.9AI score0.04322EPSS

Exploits1

SUSE CVE•added 2023/02/15 4:28 a.m.•2 views

SUSE CVE-2018-10316

Netwide Assembler NASM 2.14rc0 has an endless while loop in the assemblefile function of asm/nasm.c because of a globallineno integer overflow...

3.3CVSS7.8AI score0.01098EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 4:19 a.m.•2 views

SUSE CVE-2019-0205

In Apache Thrift all versions up to and including 0.12.0, a server or client may run into an endless loop when feed with specific input data. Because the issue had already been partially fixed in version 0.11.0, depending on the installed version it affects only certain language bindings...

7.8CVSS7.2AI score0.09082EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:32 a.m.•2 views

SUSE CVE-2022-2833

Endless Infinite loop in Blender-thumnailing due to logical bugs...

7.5CVSS7.5AI score0.00997EPSS

Exploits1References3

Tenable Nessus•added 2022/12/27 12:0 a.m.•35 views

EulerOS Virtualization 2.10.0 : curl (EulerOS-SA-2022-2872)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libcurl provides the CURLOPTCERTINFO option to allow applications torequest details to be returned about a server's certificate...

9.8CVSS6.6AI score0.3197EPSS

Exploits6References7

Tenable Nessus•added 2022/12/27 12:0 a.m.•40 views

EulerOS Virtualization 2.10.1 : curl (EulerOS-SA-2022-2890)

9.8CVSS6.6AI score0.3197EPSS

Exploits6References7

RedHat Linux•added 2022/12/01 9:9 p.m.•59 views

Moderate: Red Hat Security Advisory: OpenShift Virtualization 4.11.1 security and bug fix update

Red Hat OpenShift Virtualization release 4.11.1 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which giv...

7.5CVSS6.9AI score0.05292EPSS

Exploits2References25