CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

733 matches found

Github Security Blog•added 2021/03/30 3:10 p.m.•54 views

Possible request smuggling in HTTP/2 due missing validation of content-length

Impact The content-length header is not correctly validated if the request only use a single Http2HeaderFrame with the endStream set to to true. This could lead to request smuggling if the request is proxied to a remote peer and translated to HTTP/1.1 This is a followup of...

5.9CVSS0.4AI score0.04935EPSS

Exploits0References61Affected Software3

OSV•added 2021/03/19 1:5 p.m.•5 views

OPENSUSE-SU-2021:0448-1 Security update for netty

This update for netty fixes the following issues: - CVE-2021-21295: Fixed an improper Content-Length header field validation bsc1183262. : This update was imported from the SUSE:SLE-15-SP2:Update update project...

5.9CVSS6.3AI score0.18891EPSS

Exploits0References3

RedHat Linux•added 2021/03/16 3:18 p.m.•6 views

python: infinite loop in the tarfile module via crafted TAR archive

A flaw was found in python. In Lib/tarfile.py an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpax lacks header validation...

7.5CVSS6.8AI score0.06304EPSS

Exploits0References4

Tenable Nessus•added 2021/03/10 12:0 a.m.•36 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : python Vulnerability (NS-SA-2021-0015)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has python packages installed that are affected by a vulnerability: - In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpa...

7.5CVSS7.3AI score0.06304EPSS

Exploits0References2

RedHat Linux•added 2021/03/09 9:23 a.m.•2 views

python: infinite loop in the tarfile module via crafted TAR archive

A flaw was found in python. In Lib/tarfile.py an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpax lacks header validation...

7.5CVSS6.8AI score0.06304EPSS

Exploits0References4

RedHat Linux•added 2021/02/16 8:44 a.m.•1 views

python: infinite loop in the tarfile module via crafted TAR archive

A flaw was found in python. In Lib/tarfile.py an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpax lacks header validation...

7.5CVSS6.8AI score0.06304EPSS

Exploits0References4

BDU FSTEC•added 2020/12/18 12:0 a.m.•3 views

The vulnerability of the Twisted Web network framework’s component, allowing a hacker to cause a service failure

The vulnerability of the Twisted Web network framework’s component involves insufficient validation of input data during the processing of HTTP headers. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

10CVSS7.3AI score0.03298EPSS

Exploits1References15Affected Software10

BDU FSTEC•added 2020/12/15 12:0 a.m.•4 views

The vulnerability of the Twisted Web network framework’s component, allowing a hacker to cause a service failure

10CVSS7.4AI score0.04083EPSS

Exploits1References15Affected Software9

CVE•added 2020/12/11 10:25 p.m.•92 views

CVE-2020-17438

CVE-2020-17438 affects uIP 1.0 (used in Contiki 3.0 and other products). The IP reassembly code fails to validate the total packet length and fragmentation offset, enabling crafted IP headers to write past the static buffer into the .bss area, causing a denial of service in uip_reass() and potent...

9.8CVSS9.8AI score0.1854EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/12/11 10:25 p.m.•16 views

CVE-2020-17438

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly validate the total length of an incoming packet specified in its IP header, as well as the fragmentation offset value specified in the IP header. By crafti...

9.8AI score0.1854EPSS

Exploits0References2

OSV•added 2020/12/05 7:46 p.m.•7 views

MGASA-2020-0449 Updated pdfresurrect package fixes security vulnerability

In PDFResurrect before 0.20, lack of header validation checks causes a heap-buffer-overflow in pdfgetversion CVE-2020-20740...

7.8CVSS7.5AI score0.01046EPSS

Exploits1References4

UbuntuCve•added 2020/12/01 12:0 a.m.•23 views

CVE-2020-17438

9.8CVSS7.6AI score0.1854EPSS

Exploits0References1

CNVD•added 2020/11/23 12:0 a.m.•18 views

PDFResurrect Heap Buffer Overflow Vulnerability

PDFResurrect is a tool for analyzing PDF documents to help extract old "hidden" versions of pdf from the current pdf. pdfgetversion in versions prior to PDFResurrect 0.20 has a heap buffer overflow vulnerability. . The vulnerability stems from a lack of header validation checks in PDFResurrect. N...

7.8CVSS2.8AI score0.01046EPSS

Exploits1References1