Lucene search
+L

304 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-44913

Malicious code in bioql PyPI...

7.1CVSS7.2AI score0.01069EPSS
Exploits2References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-44912

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00756EPSS
Exploits2References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2018-8640

Malicious code in bioql PyPI...

7.8CVSS6.8AI score0.124EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-48285

Malicious code in bioql PyPI...

5.7CVSS6.3AI score0.0032EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/02 12:0 a.m.6 views

SUSE SLES15 / openSUSE 15 Security Update : nginx (SUSE-SU-2025:03444-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03444-1 advisory. - CVE-2025-53859:?the server side may leak arbitrary bytes during the NGINX SMTP authentication process bsc1248070. ...

6.3CVSS5.7AI score0.02646EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2025/09/04 9:49 a.m.1099 views

Exploit for Off-by-one Error in F5 Nginx

vulnerability in NGINX servers versions 0.6.18–1.20.0. The scr...

7.7CVSS8AI score0.53461EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.13 views

Amazon Linux 2 : nginx, --advisory ALAS2NGINX1-2025-009 (ALASNGINX1-2025-009)

The version of nginx installed on the remote host is prior to 1.28.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2NGINX1-2025-009 advisory. NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to...

6.3CVSS5.8AI score0.00394EPSS
Exploits0References4
OSV
OSV
added 2025/08/13 3:15 p.m.6 views

CVE-2025-53859

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS7.5AI score
Exploits0References2
F5 Networks
F5 Networks
added 2025/08/13 12:29 p.m.17 views

K000152786: NGINX ngx_mail_smtp_module vulnerability CVE-2025-53859

Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the...

6.3CVSS7.3AI score0.00394EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.6 views

RockyLinux 9 : nginx:1.22 (RLSA-2025:3261)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:3261 advisory. nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 Tenable has extracted the preceding description block directly from the RockyLinux...

5.7CVSS6.9AI score0.0032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/07/09 12:0 a.m.4 views

Ubuntu 24.04 LTS : nginx vulnerability (USN-7285-2)

The remote Ubuntu 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7285-2 advisory. USN-7285-1 fixed vulnerabilities in nginx. This update provides the corresponding updates for Ubuntu 24.04 LTS. Tenable has extracted the preceding description...

5.3CVSS5.4AI score0.02646EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:45 p.m.8 views

CVE-2020-19695

Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njsobjectproperty parameter of the njs/njsvm.c function...

9.8CVSS7.9AI score0.01333EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.10 views

CVE-2019-13067

njs through 0.3.3, used in NGINX, has a buffer over-read in nxtutf8decode in nxt/nxtutf8.c. This issue occurs after the fix for CVE-2019-12207 is in place...

9.8CVSS7AI score0.01823EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:26 a.m.9 views

CVE-2019-13617

njs through 0.3.3, used in NGINX, has a heap-based buffer over-read in nxtvsprintf in nxt/nxtsprintf.c during error handling, as demonstrated by an njsregexpliteral call that leads to an njsparserlexererror call and then an njsparserscopeerror call...

6.5CVSS7AI score0.01305EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:54 a.m.10 views

CVE-2019-12206

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in nxtutf8encode in nxtutf8.c...

9.8CVSS7.3AI score0.01986EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:30 a.m.7 views

CVE-2011-4963

nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via 1 a trailing . dot or 2 certain "$indexallocation" sequences in a request...

5CVSS6.9AI score0.05959EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/05/22 12:0 a.m.10 views

RHEL 9 : nginx:1.22 (RHSA-2025:7549)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7549 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security...

5.7CVSS6.9AI score0.0032EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/17 9:11 a.m.32 views

Security Bulletin: Vulnerability in Nginx affects IBM Integrated Analytics System (Sailfish)[CVE-2023-44487, CVE-2024-7347].

Summary The Nginx package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVECVE-2023-44487, CVE-2024-7347. Vulnerability Details CVEID:CVE-2023-44487 DESCRIPTION: The HTTP/2 protocol allows a denial of service server resource consumption...

7.5CVSS7.3AI score0.99999EPSS
Exploits20Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.24 views

Alibaba Cloud Linux 3 : 0036: nginx:1.18 (ALINUX3-SA-2021:0036)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0036 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-23017: A security issue in nginx resolver...

7.7CVSS7.8AI score0.53461EPSS
Exploits10References2
RedHat Linux
RedHat Linux
added 2025/05/13 2:0 p.m.12 views

nginx: specially crafted MP4 file may cause denial of service

A flaw was found in the ngxhttpmp4module module of Nginx. Processing a specially crafted MP4 file can trigger a buffer over-read and cause the nginx process to terminate, resulting in a denial of service...

5.7CVSS7.5AI score0.0032EPSS
Exploits0References5
Rows per page
Query Builder