Lucene search
K

8 matches found

NVD
NVD
added 2026/02/12 10:16 p.m.8 views

CVE-2026-26076

ntpd-rs is a full-featured implementation of the Network Time Protocol. Prior to 1.7.1, an attacker can remotely induce moderate increases 2-4 times above normal in cpu usage. When having NTS enabled on an ntpd-rs server, an attacker can create malformed NTS packets that take significantly more...

7.5CVSS0.00349EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/12 12:0 a.m.7 views

authentik 授权问题漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik prior to 2025.10.4 and 2025.12.4 contained vulnerabilities related to authorization. These vulnerabilities stemmed from the possibility of bypassing authentication when using malformed...

8.6CVSS5.8AI score0.00479EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/10 5:1 p.m.2 views

CVE-2026-25577 Emmett has an Unhandled CookieError Exception Causing Denial of Service

Emmett is a framework designed to simplify your development process. Prior to 1.3.11, the cookies property in mmettcore.http.wrappers.Request does not handle CookieError exceptions when parsing malformed Cookie headers. This allows unauthenticated attackers to trigger HTTP 500 errors and cause...

7.5CVSS5.6AI score0.00271EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/10 5:1 p.m.28 views

CVE-2026-25577 Emmett has an Unhandled CookieError Exception Causing Denial of Service

Emmett is a framework designed to simplify your development process. Prior to 1.3.11, the cookies property in mmettcore.http.wrappers.Request does not handle CookieError exceptions when parsing malformed Cookie headers. This allows unauthenticated attackers to trigger HTTP 500 errors and cause...

7.5CVSS0.00271EPSS
Exploits0References2
OSV
OSV
added 2026/02/10 2:33 p.m.4 views

GHSA-X6CR-MQ53-CC76 Emmett-Core: Unhandled CookieError Exception Causing Denial of Service

Summary The cookies property in emmettcore.http.wrappers.Request does not handle CookieError exceptions when parsing malformed Cookie headers. This allows unauthenticated attackers to trigger HTTP 500 errors and cause denial of service. Details Location: emmettcore/http/wrappers/init.py line 64...

7.5CVSS5.6AI score0.00271EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.10 views

PT-2026-7320

Name of the Vulnerable Software and Affected Versions Emmett versions prior to 1.3.11 Description The cookies property in emmett core.http.wrappers.Request does not handle CookieError exceptions when parsing malformed Cookie headers. This allows unauthenticated attackers to trigger HTTP 500 error...

7.5CVSS5.6AI score0.00271EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/11/12 8:48 a.m.5 views

mod_auth_openidc: DoS when using `OIDCSessionType client-cookie` and manipulating cookies

A flaw was found in modauthopenidc, an OpenID Certified™ authentication and authorization module for the Apache HTTP server. Missing input validation in the modauthopenidcsessionchunks cookie value can make the server vulnerable to a denial of service attack. This issue may allow a remote attacke...

7.5CVSS5.8AI score0.01261EPSS
Exploits1References4
Snyk
Snyk
added 2023/10/15 11:49 p.m.3 views

NULL Pointer Dereference

Overview Selenium.WebDriver is a .NET bindings for the Selenium WebDriver API Affected versions of this package are vulnerable to NULL Pointer Dereference due to an insufficient check on CookieWndProc function. An attacker can cause the application to crash by sending specially crafted data that...

7.5CVSS6.9AI score0.00852EPSS
Exploits1References2
Rows per page
Query Builder