Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-1889

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.00567EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2023-1891

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00624EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/02/05 8:35 p.m.7 views

CVE-2022-31005

Vapor is an HTTP web framework for Swift. Users of Vapor prior to version 4.60.3 with FileMiddleware enabled are vulnerable to an integer overflow vulnerability that can crash the application. Version 4.60.3 contains a patch for this issue. As a workaround, disable FileMiddleware and serve via a...

7.5CVSS6.9AI score0.00624EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 2:59 p.m.6 views

CVE-2020-15230

Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same host as an application. Only applications using FileMiddleware are affected. This is fixed in version 4.29.4...

8.5CVSS6.8AI score0.00567EPSS
Exploits0
Github Security Blog
Github Security Blogadded 2023/06/09 7:31 p.m.18 views

Arbitrary file read using percent-encoded relative paths in FileMiddleware

Impact Attackers can access data at arbitrary filesystem paths on the same host as an application using FileMiddleware. Patches Version 4.29.4 Workarounds Upgrade to 4.24.4 or later, or disable FileMiddleware. References Introduced in https://github.com/vapor/vapor/pull/2223 Fixed by...

8.5CVSS6.9AI score0.00567EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2023/06/09 7:31 p.m.11 views

GHSA-VCVG-XGR8-P5GQ Arbitrary file read using percent-encoded relative paths in FileMiddleware

Impact Attackers can access data at arbitrary filesystem paths on the same host as an application using FileMiddleware. Patches Version 4.29.4 Workarounds Upgrade to 4.24.4 or later, or disable FileMiddleware. References Introduced in https://github.com/vapor/vapor/pull/2223 Fixed by...

6.5CVSS7.2AI score0.00567EPSS
Exploits0References5
GitLab Advisory Database
GitLab Advisory Databaseadded 2023/06/09 12:0 a.m.14 views

Arbitrary file read using percent-encoded relative paths in FileMiddleware

Attackers can access data at arbitrary filesystem paths on the same host as an application using FileMiddleware...

8.5CVSS6.9AI score0.00567EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2023/06/07 4:26 p.m.11 views

GHSA-VJ2M-9F5J-MPR5 Vapor vulnerable to denial of service in HTTP Range Request of FileMiddleware

Vapor is an HTTP web framework for Swift and middleware is a logic chain between the client and a Vapor route handler. FileMiddleware enables the serving of assets from the Public folder of a project to the client. Vapor before 4.60.3 is vulnerable to denial of service due to an integer overflow...

7.5CVSS7.5AI score0.00624EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2023/06/07 4:26 p.m.24 views

Vapor vulnerable to denial of service in HTTP Range Request of FileMiddleware

Vapor is an HTTP web framework for Swift and middleware is a logic chain between the client and a Vapor route handler. FileMiddleware enables the serving of assets from the Public folder of a project to the client. Vapor before 4.60.3 is vulnerable to denial of service due to an integer overflow...

7.5CVSS6.8AI score0.00624EPSS
Exploits1References5Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2023/06/07 12:0 a.m.12 views

Vapor vulnerable to denial of service in HTTP Range Request of FileMiddleware

Vapor is an HTTP web framework for Swift and middleware is a logic chain between the client and a Vapor route handler. FileMiddleware enables the serving of assets from the Public folder of a project to the client. Vapor before 4.60.3 is vulnerable to denial of service due to an integer overflow...

7.5CVSS6.9AI score0.00624EPSS
Exploits1References6Affected Software1
Prion
Prionadded 2022/05/31 8:15 p.m.15 views

Integer overflow

Vapor is an HTTP web framework for Swift. Users of Vapor prior to version 4.60.3 with FileMiddleware enabled are vulnerable to an integer overflow vulnerability that can crash the application. Version 4.60.3 contains a patch for this issue. As a workaround, disable FileMiddleware and serve via a...

5CVSS7.6AI score0.00624EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2022/05/31 7:35 p.m.75 views

CVE-2022-31005

CVE-2022-31005 affects the Vapor HTTP framework for Swift prior to 4.60.3 when FileMiddleware is enabled. The issue is an integer overflow in the middleware that can crash the application. Version 4.60.3 includes a patch; a workaround is to disable FileMiddleware and serve assets via a CDN. Affec...

7.5CVSS7.6AI score0.00624EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2022/05/31 7:35 p.m.13 views

CVE-2022-31005 Integer Overflow in Vapor's HTTP Range Request

Vapor is an HTTP web framework for Swift. Users of Vapor prior to version 4.60.3 with FileMiddleware enabled are vulnerable to an integer overflow vulnerability that can crash the application. Version 4.60.3 contains a patch for this issue. As a workaround, disable FileMiddleware and serve via a...

7.5CVSS7.8AI score0.00624EPSS
Exploits1References3
OSV
OSVadded 2022/05/31 7:35 p.m.15 views

CVE-2022-31005 Integer Overflow in Vapor's HTTP Range Request

Vapor is an HTTP web framework for Swift. Users of Vapor prior to version 4.60.3 with FileMiddleware enabled are vulnerable to an integer overflow vulnerability that can crash the application. Version 4.60.3 contains a patch for this issue. As a workaround, disable FileMiddleware and serve via a...

7.5CVSS7.5AI score0.00624EPSS
Exploits1References5
NVD
NVDadded 2020/10/02 7:15 p.m.7 views

CVE-2020-15230

Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same host as an application. Only applications using FileMiddleware are affected. This is fixed in version 4.29.4...

8.5CVSS0.00567EPSS
Exploits0References3
OSV
OSVadded 2020/10/02 7:15 p.m.15 views

CVE-2020-15230

Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same host as an application. Only applications using FileMiddleware are affected. This is fixed in version 4.29.4...

6.5CVSS6.9AI score
Exploits0References3
Prion
Prionadded 2020/10/02 7:15 p.m.15 views

Design/Logic Flaw

Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same host as an application. Only applications using FileMiddleware are affected. This is fixed in version 4.29.4...

4CVSS6.4AI score0.00567EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2020/10/02 12:0 a.m.3 views

PT-2020-14296 · Vapor · Vapor

Name of the Vulnerable Software and Affected Versions: Vapor versions prior to 4.29.4 Description: Attackers can access data at arbitrary filesystem paths on the same host as an application using FileMiddleware. This issue affects applications that use FileMiddleware. Recommendations: For version...

8.5CVSS6.5AI score0.00567EPSS
Exploits0References7
Rows per page
Query Builder