Lucene search
K

94 matches found

PyPA
PyPA
added 2024/10/28 2:15 p.m.10 views

PYSEC-2024-299

Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via malformed Extension Block...

7.5CVSS5.8AI score0.00426EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/09/17 2:41 a.m.10 views

MGASA-2024-0307 Updated clamav packages fix security vulnerabilities

Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service DoS condition. CVE-2024-20505 Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam'...

7.5CVSS6.4AI score0.00555EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/10 2:20 p.m.5 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/06/10 12:2 p.m.4 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/05/23 10:45 p.m.9 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/05/04 12:0 a.m.6 views

PT-2024-25937 · Unknown · Faucet Sdn Ryu

Name of the Vulnerable Software and Affected Versions: Faucet SDN Ryu version 4.34 Description: The issue allows attackers to cause a denial of service infinite loop via inst.length=0 in OFPFlowStats in parser.py. Recommendations: For version 4.34, consider disabling the OFPFlowStats function in...

7.5CVSS7.2AI score0.00681EPSS
Exploits1References8
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/09 8:32 p.m.28 views

Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a denial of service caused by a bug in the parser [CVE-2023-5072]

Summary JSON-java is used by the IBM Datapower Operations Dashboard in its parsing infrastructure. Vulnerability Details CVEID:CVE-2023-5072 DESCRIPTION: JSON-java is vulnerable to a denial of service, caused by a bug in the parser. By sending a specially crafted request, a remote attacker could...

7.5CVSS7.4AI score0.01449EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2024/01/10 1:30 p.m.2 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/12/14 3:54 p.m.2 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/12/14 10:50 a.m.5 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/12/06 11:30 p.m.2 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/11/30 3:0 p.m.6 views

JSON-java: parser confusion leads to OOM

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS...

7.5CVSS6.7AI score0.01449EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2023/11/14 10:24 p.m.162 views

Java: DoS Vulnerability in JSON-JAVA

Summary A denial of service vulnerability in JSON-Java was discovered by ClusterFuzz. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used. There are two issues: 1 the parser bug can be used to circumvent a check that is supposed to...

7.5CVSS6.9AI score0.01449EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2023/11/14 9:15 p.m.14 views

PYSEC-2023-246

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP parser in AIOHTTP has numerous problems with header parsing, which could lead to request smuggling. This parser is only used when AIOHTTPNOEXTENSIONS is enabled or not using a prebuilt wheel. These bugs have...

7.5CVSS5.8AI score0.0085EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2023/10/26 6:27 p.m.36 views

CVE-2023-5072

A flaw was found in the org.json package. A bug in the parser exists, and an input string may lead to undefined usage of memory, leading to an out-of-memory error, causing a denial of service DoS. Mitigation No current mitigation is available for this flaw...

7.5CVSS7.3AI score0.01449EPSS
Exploits1References5
OSV
OSV
added 2023/10/12 5:15 p.m.1 views

UBUNTU-CVE-2023-5072

Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used...

7.5CVSS6.6AI score0.01449EPSS
Exploits1References5
Prion
Prion
added 2023/10/12 5:15 p.m.25 views

Input validation

Denial of Service in JSON-Java versions up to and including 20230618. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used...

5CVSS7.3AI score0.01449EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/04/27 2:12 p.m.5 views

SUSE-SU-2023:1686-2 Security update for libmicrohttpd

This update for libmicrohttpd fixes the following issues: - CVE-2023-27371: Fixed a parser bug that could be used to crash servers using the MHDPostProcessor bsc1208745...

5.9CVSS5.5AI score0.01243EPSS
Exploits1References3
OSV
OSV
added 2023/04/21 11:37 a.m.5 views

SUSE-SU-2023:1944-1 Security update for libmicrohttpd

This update for libmicrohttpd fixes the following issues: - CVE-2023-27371: Fixed parser bug that could be used to crash servers using the MHDPostProcessor bsc1208745...

5.9CVSS5.5AI score0.01243EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.3 views

SUSE CVE-2016-7931

The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mplsprint...

9.8CVSS7.8AI score0.03172EPSS
Exploits0References5
Rows per page
Query Builder