Lucene search
K

10 matches found

CVE
CVE
added yesterday7 views

CVE-2026-58254

NATS Server (affected components: leafnode message trace destination checks) could allow a leafnode operator to send trace events to subjects that should be disallowed and use trace-only behavior to interfere with delivery/storage. Root cause: checks were applied to ordinary client connections bu...

5.3CVSS5.9AI score
Exploits0References4
CVE
CVE
added yesterday9 views

CVE-2026-58213

NATS Server (nats-server) before versions 2.14.1 and 2.12.9 is vulnerable: an MQTT client can include protocol control characters in subscription filters, which are later forwarded as NATS protocol data to route or leafnode connections. This corrupts the forwarded protocol stream and allows injec...

7.1CVSS6AI score
Exploits0References8
NVD
NVD
added 2026/03/25 8:16 p.m.7 views

CVE-2026-33218

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a client which can connect to the leafnode port can crash the nats-server with a certain malformed message pre-authentication. Versions 2.11.15 and 2.12.6 contain ...

7.5CVSS0.00616EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-20970

Malicious code in bioql PyPI...

6.4AI score0.00157EPSS
Exploits0References4
OSV
OSV
added 2025/07/10 8:15 a.m.1 views

DEBIAN-CVE-2025-38278

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: QOS: Refactor TCHTBLEAFDELLAST callback This patch addresses below issues, 1. Active traffic on the leaf node must be stopped before its send queue is reassigned to the parent. This patch resolves the issue by marki...

5.5CVSS5.3AI score0.00157EPSS
Exploits0References1
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.11 views

Incorrect Termination Condition

Lines of code Vulnerability details The provided termination condition if pos = size / 2 && pos = size is incorrect. This condition is not suitable for terminating the maxHeapify function. It should instead be based on comparing values in the heap to ensure the max heap property. The condition if...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/05/06 12:0 a.m.2 views

Leaf Node Weaknesses in Bitcoin Merkle Tree Designs

Merkle tree in Chinese is called Merkle tree, is a kind of tree in computer data structure. The vulnerability stems from certain weaknesses in the design of leaf nodes in a Merkle tree. An attacker can exploit this vulnerability to modify arbitrary payment amounts...

7AI score
Exploits0
CNVD
CNVD
added 2020/04/10 12:0 a.m.3 views

Juniper Networks Junos OS Input Validation Error Vulnerability (CNVD-2020-22987)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. An input validation error vulnerability exists in the NDP proxy function of the EVPN leaf node in Juniper Networks Junos O...

7.4CVSS6.8AI score0.00531EPSS
Exploits0
OSV
OSV
added 2020/04/09 11:15 p.m.5 views

CVE-2020-1633

Due to a new NDP proxy feature for EVPN leaf nodes introduced in Junos OS 17.4, crafted NDPv6 packets could transit a Junos device configured as a Broadband Network Gateway BNG and reach the EVPN leaf node, causing a stale MAC address entry. This could cause legitimate traffic to be discarded,...

6.5CVSS5.8AI score0.00531EPSS
Exploits0References1
Prion
Prion
added 2020/04/09 11:15 p.m.21 views

Design/Logic Flaw

Due to a new NDP proxy feature for EVPN leaf nodes introduced in Junos OS 17.4, crafted NDPv6 packets could transit a Junos device configured as a Broadband Network Gateway BNG and reach the EVPN leaf node, causing a stale MAC address entry. This could cause legitimate traffic to be discarded,...

3.3CVSS6.4AI score0.00531EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder