Lucene search
K

21 matches found

OSV
OSV
added 2026/05/18 2:23 p.m.11 views

JLSEC-2026-505

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

6.5CVSS5.8AI score0.01512EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-4484

Malware in sbrugna...

7.5CVSS7.6AI score0.01225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-11555

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service...

7.5CVSS7AI score0.01201EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.4 views

SUSE CVE-2017-11555

There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service...

7.5CVSS7.5AI score0.01201EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2020/06/29 5:20 p.m.33 views

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

6.5CVSS3AI score0.01512EPSS
Exploits1References3
CNVD
CNVD
added 2019/11/07 12:0 a.m.4 views

LibSass Uncontrolled Recursion Vulnerability

LibSass is a C/C++ implementation of the Sass compiler. An uncontrolled recursion vulnerability exists in Sass::Eval::operator in eval.cpp in LibSass 3.6.1. No detailed vulnerability details are provided at this time...

6.5CVSS6.9AI score0.01512EPSS
Exploits1References1
NVD
NVD
added 2019/11/06 4:15 p.m.26 views

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

6.5CVSS7.1AI score0.01512EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/11/06 4:15 p.m.26 views

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

6.5CVSS6.9AI score0.01512EPSS
Exploits1References1
Prion
Prion
added 2019/11/06 4:15 p.m.16 views

Design/Logic Flaw

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

4.3CVSS6.7AI score0.01512EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/11/06 3:7 p.m.64 views

CVE-2019-18797

CVE-2019-18797 affects LibSass 3.6.1 and is caused by uncontrolled recursion in Sass::Eval::operator()(Sass::Binary_Expression*) in eval.cpp. The vulnerability can lead to a crash via crafted Sass input, consistent with denials of service behavior reported in multiple sources. Remediation: upgrad...

6.5CVSS6.3AI score0.01512EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2019/11/06 3:7 p.m.38 views

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

6.5CVSS8AI score0.01512EPSS
Exploits1
OSV
OSV
added 2018/12/17 8:29 p.m.11 views

UBUNTU-CVE-2018-20190

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operatorSass::SupportsOperator in eval.cpp may cause a Denial of Service application crash via a crafted sass input file...

6.5CVSS6.9AI score0.02587EPSS
Exploits1References4
Cvelist
Cvelist
added 2018/12/17 8:0 p.m.15 views

CVE-2018-20190

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operatorSass::SupportsOperator in eval.cpp may cause a Denial of Service application crash via a crafted sass input file...

6.3AI score0.02587EPSS
Exploits1References5
CNVD
CNVD
added 2017/08/19 12:0 a.m.4 views

LibSass Denial of Service Vulnerability (CNVD-2017-27708)

LibSass is an open source written in C using Sass CSS extension language parser . A denial of service vulnerability exists in the 'Sass::Eval::operator' function in the eval.cpp file in LibSass version 3.4.5. A remote attacker can exploit this vulnerability to cause a denial of service...

7.5CVSS7.4AI score0.01225EPSS
Exploits0References1
OSV
OSV
added 2017/08/18 9:29 p.m.12 views

CVE-2017-12964

There is a stack consumption issue in LibSass 3.4.5 that is triggered in the function Sass::Eval::operator in eval.cpp. It will lead to a remote denial of service attack...

7.5CVSS6.9AI score0.01836EPSS
Exploits0References1
Prion
Prion
added 2017/08/18 9:29 p.m.16 views

Design/Logic Flaw

There is a stack consumption issue in LibSass 3.4.5 that is triggered in the function Sass::Eval::operator in eval.cpp. It will lead to a remote denial of service attack...

7.8CVSS7.4AI score0.01836EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/08/18 9:0 p.m.60 views

CVE-2017-12964

CVE-2017-12964 describes a stack-consumption vulnerability in LibSass 3.4.5 triggered by Sass::Eval::operator() in eval.cpp, resulting in a remote denial of service. The affected component is LibSass (C/C++ library for Sass). The available sources consistently state a stack-based denial of servic...

7.8CVSS7.4AI score0.01836EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/08/18 9:0 p.m.30 views

CVE-2017-12963

There is an illegal address access in Sass::Eval::operator in eval.cpp of LibSass 3.4.5, leading to a remote denial of service attack. NOTE: this is similar to CVE-2017-11555 but remains exploitable after the vendor's CVE-2017-11555 fix available from GitHub after 2017-07-24...

7.4AI score0.01225EPSS
Exploits0References1
CVE
CVE
added 2017/08/18 9:0 p.m.51 views

CVE-2017-12963

LibSass 3.4.5 is affected by an illegal address access in Sass::Eval::operator() (eval.cpp) that enables remote denial of service. The issue is described as similar to CVE-2017-11555 but continues to be exploitable even after the vendor’s CVE-2017-11555 fix (available from GitHub after 2017-07-24...

7.5CVSS7.3AI score0.01225EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2017/08/01 12:0 a.m.5 views

LibSass eval.cpp File Denial of Service Vulnerability

LibSass is an open source written in C using Sass CSS extension language parser . A security vulnerability exists in the eval.cpp file in LibSass version 3.4.5. A remote attacker can exploit this vulnerability with specially crafted input to cause a denial of service...

7.5CVSS7.4AI score0.01201EPSS
Exploits1References1
Rows per page
Query Builder