Lucene search
+L

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/20 6:19 p.m.3 views

CVE-2026-32310

Cryptomator encrypts data being stored on cloud infrastructure. From version 1.6.0 to before version 1.19.1, vault configuration is parsed before its integrity is verified, and the masterkeyfile loader uses the unverified keyId as a filesystem path. The loader resolves keyId.getSchemeSpecificPart...

4.1CVSS5.8AI score0.00248EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/03/03 10:55 p.m.44 views

CVE-2026-27971

Qwik

9.8CVSS6.4AI score0.04632EPSS
In wildExploits0References1Affected Software1
OSV
OSV
added 2023/05/25 11:15 p.m.9 views

AZL-26937 CVE-2023-32067 affecting package nodejs for versions less than 16.20.1-2

c-ares is an asynchronous resolver library. c-ares is vulnerable to denial of service. If a target resolver sends a query, the attacker forges a malformed UDP packet with a length of 0 and returns them to the target resolver. The target resolver erroneously interprets the 0 length as a graceful...

7.5CVSS6.6AI score0.01577EPSS
Exploits0References1
OSV
OSV
added 2023/05/25 10:15 p.m.7 views

AZL-26914 CVE-2023-31130 affecting package c-ares for versions less than 1.19.1-1

c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to...

6.4CVSS6.7AI score0.00333EPSS
Exploits0References1
Rows per page
Query Builder