Lucene search
K

253 matches found

EUVD
EUVD
added 2025/12/05 6:0 p.m.5 views

EUVD-2025-201460

Nextcloud Twofactor WebAuthn is the WebAuthn Two-Factor Provider for Nextcloud. Prior to 1.4.2 and 2.4.1, a missing ownership check allowed an attack to take-away a 2FA webauthn device when correctly guessing a 80-128 character long random string of letters, numbers and symbols. The victim would...

3.1CVSS6.1AI score0.00226EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/05 6:0 p.m.6 views

CVE-2025-66558 Nextcloud Twofactor WebAuthn app was updated based on public key

Nextcloud Twofactor WebAuthn is the WebAuthn Two-Factor Provider for Nextcloud. Prior to 1.4.2 and 2.4.1, a missing ownership check allowed an attack to take-away a 2FA webauthn device when correctly guessing a 80-128 character long random string of letters, numbers and symbols. The victim would...

3.1CVSS6.2AI score0.00226EPSS
Exploits0References4
Nextcloud
Nextcloud
added 2025/12/05 7:50 a.m.8 views

WebAuthn app was updated based on public key

None...

4.3CVSS5.2AI score0.00226EPSS
Exploits0References2Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2025/12/03 12:0 a.m.5 views

Security update for python-cbor2 (important)

openSUSE security update: security update for python-cbor2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025-20133-1 Rating: important References: bsc1220096 bsc1253746 Cross-References: CVE-2024-26134 CVE-2025-64076 CVSS scores: CVE-2025-64076 SUSE :...

7.1CVSS7AI score0.01167EPSS
Exploits2References2
OSV
OSV
added 2025/12/02 1:51 p.m.5 views

SUSE-SU-2025:21168-1 Security update for python-cbor2

This update for python-cbor2 fixes the following issues: - CVE-2025-64076: Fixed bug in decodedefinitelongstring that causes incorrect chunk length calculation bsc1253746. Already fixed in release 5.6.3: - CVE-2024-26134: Fixed potential crash when hashing a CBORTag bsc1220096...

7.5CVSS5.8AI score0.01167EPSS
Exploits2References5
OSV
OSV
added 2025/12/02 1:51 p.m.12 views

OPENSUSE-SU-2025:20133-1 Security update for python-cbor2

This update for python-cbor2 fixes the following issues: - CVE-2025-64076: Fixed bug in decodedefinitelongstring that causes incorrect chunk length calculation bsc1253746. Already fixed in release 5.6.3: - CVE-2024-26134: Fixed potential crash when hashing a CBORTag bsc1220096...

7.5CVSS7.1AI score0.01167EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2025/11/28 12:2 a.m.8 views

CVE-2025-64076

A flaw was found in cbor2. This vulnerability allows denial of service through process crashes or memory exhaustion via sending specially-crafted CBOR data containing definite-length text strings with multi-byte UTF-8 characters...

7.5CVSS6.2AI score0.00413EPSS
Exploits1References6
OSV
OSV
added 2025/11/18 6:16 p.m.6 views

AZL-70516 CVE-2025-64076 affecting package python-cbor2 5.6.5-2

Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decodedefinitelongstring function of the C extension decoder source/decoder.c: 1 Integer Underflow Leading to Out-of-Bounds Read CWE-191, CWE-125: An incorrect variable reference and missing state reset in the chunk processing...

7.5CVSS5.8AI score0.00413EPSS
Exploits1References1
OSV
OSV
added 2025/11/18 6:16 p.m.4 views

CVE-2025-64076

Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decodedefinitelongstring function of the C extension decoder source/decoder.c: 1 Integer Underflow Leading to Out-of-Bounds Read CWE-191, CWE-125: An incorrect variable reference and missing state reset in the chunk processing...

7.5CVSS6.9AI score
Exploits0References3
EUVD
EUVD
added 2025/11/18 12:0 a.m.3 views

EUVD-2025-198054

Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decodedefinitelongstring function of the C extension decoder source/decoder.c: 1 Integer Underflow Leading to Out-of-Bounds Read CWE-191, CWE-125: An incorrect variable reference and missing state reset in the chunk processing...

7.5CVSS6.5AI score0.00413EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-9434

Malware in sbrugna...

5CVSS7.4AI score0.02976EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0694

Malware in sbrugna...

5CVSS6.4AI score0.01803EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2007-2318

Malware in sbrugna...

10CVSS6.4AI score0.04619EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2012-5916

Malware in sbrugna...

4.3CVSS8.6AI score0.02091EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2000-0857

Malware in sbrugna...

7.5CVSS6.4AI score0.01783EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/10/02 6:11 a.m.3 views

PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.

...

9.8CVSS9.3AI score0.07562EPSS
Exploits1
Redos
Redos
added 2025/09/29 12:0 a.m.4 views

ROS-20250929-04

Vulnerability of MultipartStream class of the Commons FileUpload library exists due to insufficient validation of the of input data. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service consumption of computational resources using a long string...

7.8CVSS6.7AI score0.35927EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-9211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file- writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to...

6.5CVSS6.6AI score0.02035EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/03/14 7:0 a.m.3 views

An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string.

...

5.9CVSS5.6AI score0.01316EPSS
Exploits0
OSV
OSV
added 2025/03/10 8:13 a.m.17 views

BIT-DJANGO-2025-26699

An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2.20. The django.utils.text.wrap method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings...

7.5CVSS7AI score0.00748EPSS
Exploits0References6
Rows per page
Query Builder