18 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-21619
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3...
Fedora: Security Advisory (FEDORA-2026-e67a6f9c45)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 43 Update: erlang-hex_core-0.12.2-1.fc43
Reference implementation of Hex specifications...
[SECURITY] Fedora 44 Update: erlang-hex_core-0.12.2-1.fc44
Reference implementation of Hex specifications...
Fedora 44 : erlang-hex_core (2026-e6bf22d958)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-e6bf22d958 advisory. hexcore ver. 0.12.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for thi...
Fedora 43 : erlang-hex_core (2026-e67a6f9c45)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-e67a6f9c45 advisory. hexcore ver. 0.12.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for thi...
CVE-2026-21619
A flaw was found in the hexcore, hex, and rebar3 components. This vulnerability, stemming from uncontrolled resource consumption and deserialization of untrusted data, allows a remote attacker to perform object injection and excessive memory allocation. By sending specially crafted data, an...
GHSA-HX9W-F2W9-9G96 hex_core has Unsafe Deserialization of Erlang Terms
Impact The Hex client hexcore deserializes Erlang terms received from the Hex API using binarytoterm/1 without sufficient restrictions. If an attacker can control the HTTP response body returned by the Hex API, this allows denial-of-service attacks such as atom table exhaustion, leading to a VM...
CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
DEBIAN-CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
UBUNTU-CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
EEF-CVE-2026-21619 Unsafe Deserialization of Erlang Terms in hex_core
Summary Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl...
CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
CVE-2026-21619 Unsafe Deserialization of Erlang Terms in hex_core
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
EUVD-2026-9037
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...
hex_core 安全漏洞
hexcore is a hexadecimal implementation library developed by Hex Open Source. Vulnerabilities exist in versions of hexcore prior to 0.12.1, hex prior to 2.3.2, and rebar3 prior to 3.27.0. These vulnerabilities stem from uncontrolled resource consumption and insecure data deserialization, which ma...
PT-2026-22367
Name of the Vulnerable Software and Affected Versions hex core versions 0.1.0 through 0.12.0 hex versions 2.3.0 through 2.3.1 rebar3 versions 3.9.1 through 3.26.9 Description An issue exists in hex core, hex, and rebar3 related to uncontrolled resource consumption and deserialization of untrusted...