27 matches found
CVE-2026-23524 Laravel Redis Horizontal Scaling Insecure Deserialization
Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. In versions 1.6.3 and below, Reverb passes data from the Redis channel directly into PHP’s unserialize function without restricting which classes can be instantiated, which leaves users vulnerable to...
EUVD-2026-3681
Laravel Redis Horizontal Scaling Insecure Deserialization...
GHSA-M27R-M6RX-MHM4 Laravel Redis Horizontal Scaling Insecure Deserialization
Impact This vulnerability affects Laravel Reverb versions prior to v1.7.0 when horizontal scaling is enabled REVERBSCALINGENABLED=true. The exploitability of this vulnerability is increased because Redis servers are commonly deployed without authentication. With horizontal scaling enabled, Reverb...
PT-2026-3792
Name of the Vulnerable Software and Affected Versions Laravel Reverb versions 1.6.3 and below Description Laravel Reverb, a real-time WebSocket communication backend for Laravel applications, has an issue where it passes data from the Redis channel directly into PHP’s unserialize function without...
EUVD-2023-1221
Malicious code in bioql PyPI...
CVE-2024-32886
Vitess is a database clustering system for horizontal scaling of MySQL. When executing the following simple query, the vtgate will go into an endless loop that also keeps consuming memory and eventually will run out of memory. This vulnerability is fixed in 19.0.4, 18.0.5, and 17.0.7...
CVE-2024-32886 Vitess vulnerable to infinite memory consumption and vtgate crash
Vitess is a database clustering system for horizontal scaling of MySQL. When executing the following simple query, the vtgate will go into an endless loop that also keeps consuming memory and eventually will run out of memory. This vulnerability is fixed in 19.0.4, 18.0.5, and 17.0.7...
CVE-2024-32886 Vitess vulnerable to infinite memory consumption and vtgate crash
Vitess is a database clustering system for horizontal scaling of MySQL. When executing the following simple query, the vtgate will go into an endless loop that also keeps consuming memory and eventually will run out of memory. This vulnerability is fixed in 19.0.4, 18.0.5, and 17.0.7...
Dell PowerScale OneFS Explicit Transfer of Sensitive Information Vulnerability
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. A plaintext transfer of sensitive information vulnerability exists in Dell PowerScale OneFS, which can be exploited by attackers to cause an escalation of...
Dell PowerScale OneFS Denial of Service Vulnerability (CNVD-2024-16219)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. A denial of service vulnerability exists in Dell PowerScale OneFS, which can be exploited by attackers to cause a denial of service...
Dell PowerScale OneFS Insufficient Logging Vulnerability (CNVD-2024-16222)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. A logging insufficiency vulnerability exists in Dell PowerScale OneFS, which can be exploited by an attacker to cause audit messages to be lost and unrecorded for...
Dell PowerScale OneFS Protection Mechanism Bypass Vulnerability
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. A protection mechanism bypass vulnerability exists in Dell PowerScale OneFS, which can be exploited by attackers to cause denial of service, information disclosur...
Unspecified Vulnerability in Dell PowerScale OneFS (CNVD-2023-65219)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. Dell PowerScale OneFS has a security vulnerability that can be exploited by attackers to elevate privileges...
Dell PowerScale OneFS elevation of privilege vulnerability (CNVD-2023-65218)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An elevation of privilege vulnerability exists in Dell PowerScale OneFS, which can be exploited by an attacker to bypass schema protection and gain elevated...
Dell PowerScale OneFS elevation of privilege vulnerability (CNVD-2023-65220)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An elevation of privilege vulnerability exists in Dell PowerScale OneFS, which can be exploited by an attacker to elevate privileges...
Dell PowerScale OneFS elevation of privilege vulnerability (CNVD-2023-65213)
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An elevation of privilege vulnerability exists in Dell PowerScale OneFS, which can be exploited by attackers to cause denial of service, code execution, and...
CVE-2023-29194
Vitess is a database clustering system for horizontal scaling of MySQL. Users can either intentionally or inadvertently create a keyspace containing / characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces...
Design/Logic Flaw
Vitess is a database clustering system for horizontal scaling of MySQL. Users can either intentionally or inadvertently create a keyspace containing / characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces...
CVE-2023-29194 vitess allows users to create keyspaces that can deny access to already existing keyspaces
Vitess is a database clustering system for horizontal scaling of MySQL. Users can either intentionally or inadvertently create a keyspace containing / characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces...
CVE-2023-29194
Vitess CVE-2023-29194 describes a logic flaw that allows creation of a keyspace containing a slash (/), which can cause VTAdmin (and in some references vtctldclient GetKeyspaces) to error when listing or viewing keyspaces. The underlying issue affects how keyspaces with a slash are handled and ma...