Lucene search
K

736 matches found

OSV
OSV
added 2026/03/18 10:1 a.m.2 views

SUSE-SU-2026:20752-1 Security update for libsoup

This update for libsoup fixes the following issues: Update to libsoup 3.6.6: - CVE-2025-12105: heap use-after-free in message queue handling during HTTP/2 read completion bsc1252555. - CVE-2025-14523: Duplicate Host Header Handling Causes Host-Parsing Discrepancy bsc1254876. - CVE-2025-32049:...

9.1CVSS6.9AI score0.00728EPSS
Exploits2References19
OSV
OSV
added 2026/03/18 10:1 a.m.4 views

OPENSUSE-SU-2026:20384-1 Security update for libsoup

This update for libsoup fixes the following issues: Update to libsoup 3.6.6: - CVE-2025-12105: heap use-after-free in message queue handling during HTTP/2 read completion bsc1252555. - CVE-2025-14523: Duplicate Host Header Handling Causes Host-Parsing Discrepancy bsc1254876. - CVE-2025-32049:...

9.1CVSS7AI score0.00728EPSS
Exploits2References18
OSV
OSV
added 2026/03/16 3:30 p.m.2 views

GHSA-2V3W-6G35-5F9V Mattermost fails to properly validate User-Agent header tokens

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to properly validate User-Agent header tokens which allows an authenticated attacker to cause a request panic via a specially crafted User-Agent header. Mattermost Advisory ID: MMSA-2026-00586...

4.3CVSS5.8AI score0.00285EPSS
Exploits0References4
OSV
OSV
added 2026/03/16 2:19 p.m.5 views

UBUNTU-CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00773EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

Mattermost 安全漏洞

Mattermost is an open-source collaboration platform developed by the American company Mattermost. Versions of Mattermost such as 11.3.0 and earlier 11.3.x series, 11.2.2 and earlier 11.2.x series, as well as 10.11.10 and earlier 10.11.x series, have security vulnerabilities. These vulnerabilities...

4.3CVSS6.4AI score0.00285EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/03/15 12:0 a.m.2 views

Toward Secure Web to ERP Payment Flows: A Case Study of HTTP Header Trust Failures in SAP Based Systems

Electronic banking portals often sit in front of enterprise resource planning ERP systems such as SAP, mediating payment requests between users and back end financial infrastructure. When these integrations place excessive trust in client supplied HTTP metadata, subtle design flaws can arise that...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/12 9:16 p.m.5 views

DEBIAN-CVE-2026-1527

ImpactWhen an application passes user-controlled input to the upgrade option of client.request, an attacker can inject CRLF sequences \r\n to: Inject arbitrary HTTP headers Terminate the HTTP request prematurely and smuggle raw data to non-HTTP services Redis, Memcached, Elasticsearch The...

4.6CVSS7.5AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2026/03/12 8:39 a.m.3 views

BIT-ENVOY-2026-26308 Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC Role-Based Access Control filter contains a logic vulnerability in how it validates HTTP headers when multiple values are present for the same header name. Instead of validating eac...

8.2CVSS5.8AI score0.00293EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.5 views

pyjwt 安全漏洞

pyjwt is a Python library developed by José Padilla from the United States. It allows for the encoding and decoding of JSON Web Tokens JWTs. pyjwt has security vulnerabilities, stemming from the lack of validation for the crit header parameter. This vulnerability may allow the acceptance of JWS...

7.5CVSS6.7AI score0.00269EPSS
Exploits1References3
NVD
NVD
added 2026/03/11 4:16 p.m.3 views

CVE-2025-13690

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to cause a denial of service condition due to improper input validation on webhook custom header names under...

6.5CVSS0.00385EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/11 4:5 p.m.3 views

CVE-2025-13690 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to cause a denial of service condition due to improper input validation on webhook custom header names under...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References3
CVE
CVE
added 2026/03/11 4:5 p.m.9 views

CVE-2025-13690

GitLab CE/EE versions with affected ranges are vulnerable to a DoS due to improper input validation on webhook header names when the user is authenticated. Specifically, all 16.11.x prior to 18.7.6, all 18.8.x prior to 18.8.6, and all 18.9.x prior to 18.9.2 are impacted. The issue is mitigated by...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/03/11 4:5 p.m.4 views

CVE-2025-13690

Removed by vendor...

6.5CVSS5.8AI score0.00385EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/11 7:8 a.m.4 views

CVE-2026-3089

Actual Sync Server allows authenticated users to upload files through POST /sync/upload-user-file. In versions prior to 26.3.0, improper validation of the user-controlled x-actual-file-id header means that traversal segments ../ can escape the intended directory and write files outside...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.2 views

PT-2026-24708

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to cause a denial of service condition due to improper input validation on webhook custom header names under...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References7
NVD
NVD
added 2026/03/10 8:16 p.m.4 views

CVE-2026-26308

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC Role-Based Access Control filter contains a logic vulnerability in how it validates HTTP headers when multiple values are present for the same header name. Instead of validating eac...

8.2CVSS0.00293EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/10 7:57 p.m.4 views

CVE-2025-36227 Multiple vulnerabilities in IBM Aspera Faspex

IBM Aspera Faspex 5 5.0.0 through 5.0.14.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijackin...

5.4CVSS5.7AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 7:1 p.m.26 views

CVE-2026-26308 Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC Role-Based Access Control filter contains a logic vulnerability in how it validates HTTP headers when multiple values are present for the same header name. Instead of validating eac...

7.5CVSS0.00293EPSS
Exploits1References2
OSV
OSV
added 2026/03/10 7:1 p.m.4 views

CVE-2026-26308 Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC Role-Based Access Control filter contains a logic vulnerability in how it validates HTTP headers when multiple values are present for the same header name. Instead of validating eac...

7.5CVSS5.8AI score0.00293EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/10 7:1 p.m.9 views

CVE-2026-26308 Envoy has an RBAC Header Validation Bypass via Multi-Value Header Concatenation

Envoy is a high-performance edge/middle/service proxy. Prior to 1.37.1, 1.36.5, 1.35.8, and 1.34.13, the Envoy RBAC Role-Based Access Control filter contains a logic vulnerability in how it validates HTTP headers when multiple values are present for the same header name. Instead of validating eac...

7.5CVSS5.8AI score0.00293EPSS
Exploits1References2
Rows per page
Query Builder