Lucene search
K

737 matches found

Positive Technologies
Positive Technologies
added 2020/02/06 12:0 a.m.4 views

PT-2020-2534 · Node.Js +8 · Node.Js +8

Name of the Vulnerable Software and Affected Versions: Node.js versions 10 through 13 Description: The issue is related to insufficient input validation when processing HTTP headers in Node.js, allowing a remote attacker to gain full control over the application through various network protocols...

10CVSS8.5AI score0.87806EPSS
Exploits7References148
Debian CVE
Debian CVE
added 2020/02/04 3:5 a.m.26 views

CVE-2020-5236

Waitress version 1.4.2 allows a DOS attack When waitress receives a header that contains invalid characters. When a header like "Bad-header: xxxxxxxxxxxxxxx\x10" is received, it will cause the regular expression engine to catastrophically backtrack causing the process to use 100% CPU time and...

6.8CVSS6.4AI score0.0262EPSS
Exploits0
Veracode
Veracode
added 2020/01/28 6:7 a.m.27 views

CRLF Injection

ktor is vulnerable to request smuggling. Lack of validation of the Content-Length and Transfer-Encoding headers allows a remote attacker to inject \n characters as a header separator and smuggle request through the server...

7.5CVSS5.5AI score0.00762EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/12/26 4:34 p.m.71 views

HTTP Request Smuggling: Invalid whitespace characters in headers in Waitress

Impact If a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Content-Length: 10 Transfer-Encoding: \x0bchunked For clarity: 0x0b == vertical...

6.6AI score
Exploits0References3Affected Software1
OSV
OSV
added 2019/12/26 4:34 p.m.1 views

GHSA-M5FF-3WJ3-8PH4 HTTP Request Smuggling: Invalid whitespace characters in headers in Waitress

Impact If a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Content-Length: 10 Transfer-Encoding: \x0bchunked For clarity: 0x0b == vertical...

5.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/12/24 12:0 a.m.8 views

PT-2019-6234 · Waitress +3 · Waitress +3

Name of the Vulnerable Software and Affected Versions: Waitress versions 1.4.0 and earlier Description: The issue is related to the incorrect handling of special whitespace characters in the Transfer-Encoding header, which can lead to HTTP request smuggling and potentially result in cache poisoni...

9.8CVSS7AI score0.99856EPSS
Exploits28References179
Hacker One
Hacker One
added 2019/12/18 7:15 p.m.35 views

GitHub Security Lab: Netty HTTP Response Splitting (CRLF Injection) due to disabled header validation

This bug was reported directly to GitHub Security Lab...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2019/12/10 12:0 a.m.7 views

PT-2019-5716 · Python +10 · Python +10

Name of the Vulnerable Software and Affected Versions: Python versions through 3.8.3 Description: The issue is related to the proc pax function in Lib/tarfile.py, which lacks proper header validation, allowing an attacker to craft a TAR archive that can cause an infinite loop when opened by...

10CVSS6.4AI score0.73461EPSS
Exploits64References478
Github Security Blog
Github Security Blog
added 2019/12/06 6:55 p.m.164 views

Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') in Armeria

Versions of Armeria 0.85.0 through and including 0.96.0 are vulnerable to HTTP response splitting, which allows remote attackers to inject arbitrary HTTP headers via CRLF sequences when unsanitized data is used to populate the headers of an HTTP response. Impact 1. Cross-User Defacement 2. Cache...

1.9AI score
Exploits0References2Affected Software1
OSV
OSV
added 2019/12/06 6:55 p.m.20 views

GHSA-35FR-H7JR-HH86 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') in Armeria

Versions of Armeria 0.85.0 through and including 0.96.0 are vulnerable to HTTP response splitting, which allows remote attackers to inject arbitrary HTTP headers via CRLF sequences when unsanitized data is used to populate the headers of an HTTP response. Impact 1. Cross-User Defacement 2. Cache...

6.5CVSS6.4AI score0.00982EPSS
Exploits0References1
OSV
OSV
added 2019/11/30 7:16 p.m.6 views

OPENSUSE-SU-2019:2596-1 Security update for cpio

This update for cpio fixes the following issues: - CVE-2019-14866: Fixed an improper validation of the values written in the header of a TAR file through the tooct function which could have led to unexpected TAR generation bsc1155199. This update was imported from the SUSE:SLE-15:Update update...

7.3CVSS7.3AI score0.00686EPSS
Exploits1References3
OSV
OSV
added 2019/08/21 7:15 p.m.5 views

CVE-2019-1974

A vulnerability in the web-based management interface of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to bypass user authentication and gain access as an administrative user...

9.8CVSS7.3AI score
Exploits0References1
OSV
OSV
added 2019/08/21 7:15 p.m.3 views

CVE-2019-1937

A vulnerability in the web-based management interface of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to acquire a valid session token with administrator privileges, bypassing...

9.8CVSS7.2AI score
Exploits0References6
Prion
Prion
added 2019/08/21 7:15 p.m.18 views

Design/Logic Flaw

A vulnerability in the web-based management interface of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to bypass user authentication and gain access as an administrative user...

10CVSS9.7AI score0.04491EPSS
Exploits0References1Affected Software3
Positive Technologies
Positive Technologies
added 2019/08/21 12:0 a.m.2 views

PT-2019-3022 · Cisco · Cisco Ucs Director Express For Big Data +2

Name of the Vulnerable Software and Affected Versions: Cisco Integrated Management Controller IMC Supervisor versions affected versions not specified Cisco UCS Director versions affected versions not specified Cisco UCS Director Express for Big Data versions affected versions not specified...

10CVSS8.2AI score0.75863EPSS
Exploits14References11
Positive Technologies
Positive Technologies
added 2019/03/26 12:0 a.m.5 views

PT-2019-11415 · Kentico · Kentico Xperience

Name of the Vulnerable Software and Affected Versions: Kentico Xperience versions 9.x and earlier Kentico Xperience versions 10.0.x through 10.0.51 Kentico Xperience versions 11.0.x through 11.0.47 Kentico Xperience versions 12.0.x through 12.0.14 Description: The issue is related to the...

9.8CVSS8.3AI score0.96031EPSS
Exploits5References6
RedHat Linux
RedHat Linux
added 2018/10/18 10:11 a.m.3 views

nodejs: Inspector DNS rebinding vulnerability

It was found that when a Node.js script is run in inspector mode, Node.js did not properly validate the Host header, leaving the inspector vulnerable to a DNS rebind attack and bypass same-origin policy. If a developer had an inspector session running, and was visiting a malicious website, the si...

8.8CVSS6.7AI score0.09916EPSS
Exploits0References4
CVE
CVE
added 2018/10/17 8:0 p.m.52 views

CVE-2018-15402

Cisco Enterprise NFV Infrastructure Software (NFVIS) contains a CSRF vulnerability (CVE-2018-15402) arising from improper Origin header validation in the management HTTP interface. An unauthenticated, remote attacker can lure a user to a malicious page to perform actions with the user’s privilege...

8.8CVSS6.6AI score0.00481EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/10/05 2:29 p.m.4 views

CVE-2018-0455

A vulnerability in the Server Message Block Version 2 SMBv2 and Version 3 SMBv3 protocol implementation for the Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the device to run low on system memory, possibly preventing the device from forwarding traffic. ...

7.5CVSS5.8AI score0.01485EPSS
Exploits0References1
Cisco
Cisco
added 2018/10/03 4:0 p.m.28 views

Cisco Firepower System Software Detection Engine Denial of Service Vulnerability

A vulnerability in the Server Message Block Version 2 SMBv2 and Version 3 SMBv3 protocol implementation for the Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the device to run low on system memory, possibly preventing the device from forwarding traffic. ...

8.6CVSS1.7AI score0.01485EPSS
Exploits0References1
Rows per page
Query Builder