113 matches found
EUVD-2021-22795
Malware in sbrugna...
EUVD-2009-3585
Malware in sbrugna...
EUVD-2018-13203
Malware in sbrugna...
EUVD-2018-13056
Malware in sbrugna...
EUVD-2017-11766
Malware in sbrugna...
EUVD-2023-41525
Malicious code in bioql PyPI...
EUVD-2022-52599
Malicious code in bioql PyPI...
EUVD-2022-44029
Malicious code in bioql PyPI...
EUVD-2022-6689
Malicious code in bioql PyPI...
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to insufficient bounds checking on the authorization header. An attacker can cause excessive memory allocation by sending specially crafted requests, potentially leading to servic...
IBM Concert Software Improper Heap Memory Cleanup Vulnerability
IBM Concert Software is IBM's generative AI-driven automated application management and monitoring tool based on the WatsonX platform, focused on optimizing the operational efficiency and reliability of applications. IBM Concert Software suffers from an improper heap memory cleanup vulnerability...
ROS-20250814-05
Mozilla Firefox browser vulnerability is related to an unchecked return value. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the NSS application development library set of Firefox web browser and Thunderbird email client...
CVE-2025-23331
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where a user could cause a memory allocation with excessive size value, leading to a segmentation fault, by providing an invalid request. A successful exploit of this vulnerability might lead to denial of service...
RLSA-2025:3411 Important: opentelemetry-collector security update
Collector with the supported components for a Rocky Enterprise Software Foundation build of OpenTelemetry Security Fixes: golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing CVE-2025-30204 For more details about the security issues, including the impact, a CVSS score,...
CVE-2025-53628
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.20.1, cpp-httplib does not have a limit for a unique line, permitting an attacker to explore this to allocate memory arbitrarily. This vulnerability is fixed in 0.20.1. NOTE: This vulnerability is related...
CVE-2025-53629 cpp-httplib Unbounded Memory Allocation in Chunked/No-Length Requests Vulnerability
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.23.0, incoming requests using Transfer-Encoding: chunked in the header can allocate memory arbitrarily in the server, potentially leading to its exhaustion. This vulnerability is fixed in 0.23.0. NOTE: Th...
CVE-2025-53629
CVE-2025-53629 affects cpp-httplib (C++11 single-file header-only HTTP/HTTPS library). Prior to version 0.23.0, handling of incoming requests with Transfer-Encoding: chunked could allocate memory arbitrarily on the server, risking memory exhaustion. The vulnerability is fixed in 0.23.0. Related C...
CVE-2025-53628 cpp-httplib does not limit the length of a line
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.20.1, cpp-httplib does not have a limit for a unique line, permitting an attacker to explore this to allocate memory arbitrarily. This vulnerability is fixed in 0.20.1. NOTE: This vulnerability is related...
Security Bulletin: IBM Jazz for Service Management is vulnerable due to Apache ActiveMQ Memory Allocation with Excessive Size Value vulnerability
Summary IBM Jazz for Service Management is vulnerable due to Apache ActiveMQ Memory Allocation with Excessive Size Value vulnerability CVE-2025-27533 Vulnerability Details CVEID:CVE-2025-27533 DESCRIPTION: Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ. During...
Autodesk Maya < 2025.3.1 / MayaUSD < 0.32.0 Arbitrary Memory Allocation (ADSK-SA-2025-0011)
The version of Autodesk Maya installed on the remote host is prior to 2025.3.1, or one of its installed plugins, MayaUSD, is prior to 0.32.0. It is, therefore, affected by an arbitrary memory allocation vulnerability. A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force ...