CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

223 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в symfony

Symfony is a PHP framework for web and console applications, along with a set of reusable PHP components. The Symfony HTTP cache system functions as a reverse proxy: it caches entire responses including headers and returns them to clients. In a recent change to the AbstractSessionListener,...

8.8CVSS7.1AI score0.00182EPSS

Exploits1References2

SUSE CVE•added 2026/05/13 4:0 p.m.•2 views

SUSE CVE-2017-12425

An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the...

7.5CVSS7.2AI score0.01419EPSS

Exploits0References3

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 9 : nodejs:18 (AXSA:2023-6072:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6072:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.00416EPSS

Exploits5References9

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : nodejs:16 (AXSA:2023-5262:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5262:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.00416EPSS

Exploits5References9

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 9 : nodejs-nodemon-2.0.20-3.el9, nodejs-16.19.1-1.el9 (AXSA:2023-6037:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6037:02 advisory. c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-4904 http-cache-semantics: Regular Expression Denial of Servic...

8.6CVSS8AI score0.00337EPSS

Exploits3References7

OSV•added 2025/12/04 7:42 a.m.•2 views

ROOT-APP-NPM-CVE-2022-25881 CVE-2022-25881 in @rootio/http-cache-semantics - Patched by Root

Root has patched CVE-2022-25881 in the @rootio/http-cache-semantics package for Root:npm. Multiple fixed versions available...

7.5CVSS7.2AI score0.00175EPSS

Exploits1

Tenable Nessus•added 2025/12/04 12:0 a.m.•1 views

RockyLinux 9 : nodejs:18 (RLSA-2023:2654)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2654 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-49...

8.6CVSS7.1AI score0.00416EPSS

Exploits5References17

Positive Technologies•added 2025/10/31 12:0 a.m.•2 views

PT-2025-44594

Name of the Vulnerable Software and Affected Versions Apache HTTP Cache affected versions not specified Description Malicious or unintentional API requests can be used to add a significant amount of data to caches. This can lead to the eviction of information required for the web frontend to...

7.5CVSS6.4AI score0.00061EPSS

Exploits0References6