Lucene search
K

11150 matches found

Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.2 views

can: mcp251xfd: fix infinite loop when xmit fails

...

5.5CVSS7.3AI score0.00227EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/09/11 12:0 a.m.3 views

PT-2024-35361

Name of the Vulnerable Software and Affected Versions: GNOME libsoup versions prior to 3.6.1 Description: The issue is related to an infinite loop and memory consumption during the reading of certain patterns of WebSocket data from clients. Recommendations: For versions prior to 3.6.1, update to...

8.4CVSS7.7AI score0.00933EPSS
Exploits3References126
Redos
Redos
added 2024/09/10 12:0 a.m.287 views

ROS-20240910-01

A vulnerability in the HAProxy server software is related to entering an infinite loop when given certain input data. of certain inputs. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service...

7.5CVSS6.8AI score0.01203EPSS
Exploits0
OSV
OSV
added 2024/09/06 11:9 a.m.8 views

OESA-2024-2119 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

8.7CVSS7AI score0.02303EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/09/06 12:0 a.m.6 views

The vulnerability of the server software HAProxy lies in its ability to enter an infinite loop when processing certain input data, allowing a hacker to cause a service failure.

The vulnerability of the server software HAProxy is related to its ability to enter an infinite loop when certain input data is provided. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.1AI score0.01203EPSS
Exploits0References7Affected Software2
RedHat Linux
RedHat Linux
added 2024/09/05 2:13 p.m.8 views

github.com/jaraco/zipp: Denial of Service (infinite loop) via crafted zip file in jaraco/zipp

A flaw was found in jaraco/zipp. The vulnerability is triggered when processing a specially crafted zip file that leads to an infinite loop. This issue also impacts the zipfile module of CPython, as features from the third-party zipp library are later merged into CPython, and the affected code is...

6.2CVSS7.3AI score0.00236EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/09/04 12:0 a.m.42 views

SUSE SLES15: kubernetes1.27-apiserver / kubernetes1.27-client / etc (SUSE-SU-2024:3098-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3098-1 advisory. Update kubernetes to version 1.27.16 - CVE-2024-24786: Fixed infinite loop in protojson.Unmarshal in golang-protobuf...

7.5CVSS7.1AI score0.99999EPSS
Exploits20References12
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/03 8:55 p.m.20 views

Security Bulletin: Vulnerability in Apache Commons Compress affects watsonx.data

Summary Apache Commons Compress is vulnerable to a denial of service. For CVE-2021-35515, when reading a specially crafted 7Z archive, the construction of the list of codecs that decompress an entry can result in an infinite loop. For CVE-2021-35516, when reading a specially crafted 7Z archive,...

7.5CVSS7.8AI score0.12697EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/09/03 5:57 p.m.4 views

python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

A flaw was found in Python's zipfile module. When iterating over the entries of a zip archive, the process can enter into an infinite loop state and become unresponsive. This flaw allows an attacker to craft a malicious ZIP archive, leading to a denial of service from the application consuming th...

8.7CVSS7.1AI score0.01275EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2024/09/03 11:45 a.m.2 views

golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON

A flaw was found in Golang's protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. Thi...

7.5CVSS6.7AI score0.01262EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/09/03 11:45 a.m.4 views

golang: net: malformed DNS message can cause infinite loop

A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service DoS conditions...

5.9CVSS7.3AI score0.01001EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/03 5:54 a.m.5 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/03 5:36 a.m.7 views

kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()

A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...

5.5CVSS6.8AI score0.00286EPSS
Exploits0References5
Debian
Debian
added 2024/09/03 5:7 a.m.15 views

[SECURITY] [DLA 3865-1] frr security update

Debian LTS Advisory DLA-3865-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost September 03, 2024 https://wiki.debian.org/LTS Package : frr Version : 7.5.1-1.1+deb11u3 CVE ID : CVE-2022-26125 CVE-2022-26126 CVE-2022-26127 CVE-2022-26128 CVE-2022-26129 CVE-2022-37035...

9.8CVSS7.2AI score0.01923EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2024/08/30 12:0 a.m.24 views

CBL Mariner 2.0 Security Update: edk2 / openssl (CVE-2022-0778)

The version of edk2 / openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0778 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loo...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References2
Veracode
Veracode
added 2024/08/28 7:32 p.m.15 views

Uncontrolled Recursion

@apollo/gateway and @apollo/query-planner are vulnerable to Uncontrolled Recursion. The vulnerability is due to the query planner potentially entering an infinite loop when processing sufficiently complex queries, leading to unbounded memory consumption and possible system crashes...

7.5CVSS7.1AI score0.00988EPSS
Exploits1References6Affected Software2
RedHat Linux
RedHat Linux
added 2024/08/28 7:0 p.m.1 views

python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

A flaw was found in Python's zipfile module. When iterating over the entries of a zip archive, the process can enter into an infinite loop state and become unresponsive. This flaw allows an attacker to craft a malicious ZIP archive, leading to a denial of service from the application consuming th...

8.7CVSS7.1AI score0.01275EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2024/08/28 12:0 a.m.52 views

Python Multiple Vulnerabilities (Aug 2024) - Windows

Python is prone to an infinite loop vulnerability leading to a denial of service DoS. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.3AI score0.02303EPSS
Exploits3References21
OpenVAS
OpenVAS
added 2024/08/28 12:0 a.m.48 views

Python Multiple Vulnerabilities (Aug 2024) - Linux

Python is prone to an infinite loop vulnerability leading to a denial of service DoS. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.3AI score0.02303EPSS
Exploits3References21
OpenVAS
OpenVAS
added 2024/08/28 12:0 a.m.21 views

Python Multiple Vulnerabilities (Aug 2024) - Mac OS X

Python is prone to an infinite loop vulnerability leading to a denial of service DoS. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.3AI score0.02303EPSS
Exploits3References21
Rows per page
Query Builder