63 matches found
Excessive Iteration
Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration via the processing of cross-reference streams containing /W values set to 0 0 0 and large /Size values. An...
ROS-20260417-73-0015
Vulnerability in python-PyPDF2 related to excessive iteration. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260417-73-0023
Vulnerability in python-PyPDF2 related to excessive iteration. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Excessive Iteration
Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration in the incremental mode for PDF processing. An attacker can cause excessive resource consumption and...
Excessive Iteration
Overview PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration in the incremental mode for PDF processing. An attacker can cause excessive resource consumption and...
Excessive Iteration
Overview python-multipart is an A streaming multipart parser for Python Affected versions of this package are vulnerable to Excessive Iteration in the parsing performed by multipart.py. An attacker can degrade performance by sending multipart requests with very large preamble or epilogue sections...
ROS-20260408-73-0009
A vulnerability in the kmemleakdocleanup function of the mm/kmemleak.c component of the Linux operating system kernel is related to excessive iteration. Exploitation of the vulnerability allows an attacker to cause a denial of service...
Allocation of Resources Without Limits or Throttling
Overview Scriban is a Scriban is a fast, powerful, safe and lightweight scripting language and engine for .NET, which was primarily developed for text templating with a compatibility mode for parsing liquid templates. Today, not only Scriban can be used in text templating scenarios, but also can ...
Excessive Iteration
Overview Affected versions of this package are vulnerable to Excessive Iteration via the decryptKey function when processing attacker-controlled JWE headers using PBES2 algorithms. An attacker can cause excessive CPU consumption and exhaust server resources by supplying a JWE with a very large p2...
Excessive Iteration
Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Excessive Iteration in the parsebfrange function in cmap.py. An attacker can cause excessive resource consumption by supplying a...
Excessive Iteration
Overview tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed. Affected versions of this package are vulnerable to Excessive Iteration in the parseparam function. An attacker can cause the server to become unresponsive and consume excessive CPU...
EUVD-2019-4548
Malware in sbrugna...
EUVD-2018-20733
Malware in sbrugna...
EUVD-2018-18110
Malware in sbrugna...
EUVD-2018-18363
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-12973
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OpenJPEG 2.3.1, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a...
The vulnerability of the MongoDB database management system’s server allows a hacker to cause a service failure.
The vulnerability of the MongoDB database management system server is related to excessive iteration. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
CVE-2023-26513
Excessive Iteration vulnerability in Apache Software Foundation Apache Sling Resource Merger.This issue affects Apache Sling Resource Merger: from 1.2.0 before 1.4.2...
CVE-2023-37930
Multiple issues including the use of uninitialized ressources CWE-908 and excessive iteration CWE-834 vulnerabilities vulnerability in Fortinet allows a VPN user to corrupt memory potentially leading to code or commands execution via specifically crafted requests...
CVE-2023-37930
CVE-2023-37930 affects Fortinet FortiOS/FortiProxy/FortiManager products. It involves use of uninitialized resources (CWE-908) and excessive iteration (CWE-834) that can cause memory corruption and potentially allow code or commands execution via specially crafted requests. The issue is addressed...