Lucene search
K

11150 matches found

SUSE CVE
SUSE CVE
added 2024/08/27 2:24 a.m.2 views

SUSE CVE-2024-43890

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in getfreeelt "tracingmap-nextelt" in getfreeelt is at risk of overflowing. Once it overflows, new elements can still be inserted into the tracingmap even though the maximum number of elements maxelts has be...

3.3CVSS6.6AI score0.00255EPSS
Exploits0References17
CNNVD
CNNVD
added 2024/08/27 12:0 a.m.2 views

Apollo Federation 安全漏洞

Apollo Federation is an architecture for the Apollo community to declaratively combine APIs into a unified graph. A security vulnerability exists in Apollo Federation, which stems from the fact that if @apollo/query-planner is asked to plan a sufficiently complex query, it may loop indefinitely a...

7.5CVSS6.5AI score0.00988EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.4 views

The vulnerability of the i2c_hid_xfer() function in the i2c-hid component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the i2chidxfer function in the i2c-hid component of the Linux operating system is related to the invocation of a interrupt handler in an infinite loop. Exploiting this vulnerability may allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00177EPSS
Exploits0References48Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.3 views

The vulnerability of the batman-adv component in the Linux operating system, which allows a hacker to cause a service failure.

The vulnerability of the batman-adv component in the Linux operating system is related to errors in infinite loops when attempting to change the size of the local TT. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00259EPSS
Exploits0References47Affected Software4
OSV
OSV
added 2024/08/26 11:15 a.m.7 views

AZL-48620 CVE-2024-43890 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in getfreeelt "tracingmap-nextelt" in getfreeelt is at risk of overflowing. Once it overflows, new elements can still be inserted into the tracingmap even though the maximum number of elements maxelts has be...

5.5CVSS6.3AI score0.00255EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/08/25 2:41 a.m.5 views

SUSE CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

5.3CVSS6.9AI score0.01275EPSS
Exploits0References24
NVD
NVD
added 2024/08/22 7:15 p.m.15 views

CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS0.01275EPSS
Exploits0References22
OSV
OSV
added 2024/08/22 7:15 p.m.6 views

AZL-48125 CVE-2024-8088 affecting package python3 for versions less than 3.12.3-4

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.7AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 7:15 p.m.2 views

ALPINE-CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.8AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 7:15 p.m.10 views

AZL-48141 CVE-2024-8088 affecting package tensorflow for versions less than 2.16.1-7

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.7AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 7:15 p.m.7 views

AZL-48114 CVE-2024-8088 affecting package python3 for versions less than 3.9.19-5

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.7AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 7:15 p.m.2 views

DEBIAN-CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.7AI score0.01275EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 7:15 p.m.1 views

UBUNTU-CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS6.8AI score0.01275EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/08/22 6:45 p.m.23 views

CVE-2024-8088 Infinite loop when iterating over zip archive entry names from zipfile.Path

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS0.01275EPSS
Exploits0References16
Vulnrichment
Vulnrichment
added 2024/08/22 6:45 p.m.24 views

CVE-2024-8088 Infinite loop when iterating over zip archive entry names from zipfile.Path

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS7.4AI score0.01275EPSS
Exploits0References16
OSV
OSV
added 2024/08/22 6:45 p.m.22 views

PSF-2024-10

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS7.3AI score0.01275EPSS
Exploits0References16
AlpineLinux
AlpineLinux
added 2024/08/22 6:45 p.m.25 views

CVE-2024-8088

There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over names of entries in a zip archive for example, methods of "zipfile.Path" like "namelist", "iterdir", etc...

8.7CVSS7.5AI score0.01275EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/22 2:33 p.m.38 views

Security Bulletin: IBM® Db2® federated server is affected by vulnerabilities in the open source bcprov-jdk18on library (CVE-2024-30171, CVE-2024-30172, CVE-2024-29857)

Summary IBM® Db2® federated server is affected by vulnerabilities in the open source bcprov-jdk18on library. Vulnerability Details CVEID:CVE-2024-30172 DESCRIPTION: The Bouncy Castle Crypto Package For Java is vulnerable to a denial of service, caused by an infinite loop in the Ed25519 verificati...

7.5CVSS7.4AI score0.011EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2024/08/22 12:0 a.m.2 views

Python 安全漏洞

Python is an open source, object-oriented programming language from the Python Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. A security vulnerability exists in Python that stems from a potential infinite loop due to a maliciously crafted z...

8.7CVSS7AI score0.01275EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/08/22 12:0 a.m.9 views

PT-2024-6043 · Python +12 · Cpython +12

Name of the Vulnerable Software and Affected Versions: CPython affected versions not specified Description: There is a HIGH severity issue affecting the CPython "zipfile" module, specifically the "zipfile.Path" class, which can cause an infinite loop when iterating over names of entries in a...

9.8CVSS7.5AI score0.73461EPSS
Exploits36References322
Rows per page
Query Builder