Lucene search
K

32 matches found

Amazon
Amazon
added 2026/06/22 12:0 a.m.12 views

Important: containerd

Issue Overview: An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state a...

10CVSS6.8AI score0.005EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/25 12:0 a.m.20 views

Linux Distros Unpatched Vulnerability : CVE-2026-39829

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could...

7.5CVSS5.9AI score0.004EPSS
Exploits0References4
CVE
CVE
added 2026/04/15 11:45 p.m.18 views

CVE-2026-5363

TP-Link Archer C7 v5/v5.8 (uhttpd) is affected by CVE-2026-5363 due to inadequate encryption strength: the admin password is encrypted client-side with RSA-1024 before login, allowing an adjacent attacker to brute-force or factor the 1024-bit key and recover plaintext credentials, leading to unau...

8.8CVSS5.8AI score0.00091EPSS
Exploits0References1Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2026/02/06 6:52 p.m.9 views

Metasploit Wrap-Up 02/06/2026

Google Summer of Code 2026 Our very own Jack Heysel has added some documentation which outlines the Metasploit Framework project ideas for GSoC 2026. For anyone interested in applying please see GSoC-How-To-Apply documentation, or reach out on slack to any of the following GSoC mentors on Slack v...

5.7AI score
Exploits0
NVD
NVD
added 2025/09/01 8:15 a.m.5 views

CVE-2022-38692

In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges...

9.8CVSS0.00413EPSS
Exploits0References1
NVD
NVD
added 2025/08/04 10:15 p.m.6 views

CVE-2025-7844

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

1CVSS0.00143EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/04 9:35 p.m.12 views

CVE-2025-7844 wolfTPM library wrapper function `wolfTPM2_RsaKey_TpmToWolf` copies external data to a fixed-size stack buffer without length validation potentially causing stack-based buffer overflow

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

1CVSS0.00143EPSS
Exploits0References1
CVE
CVE
added 2025/08/04 9:35 p.m.16 views

CVE-2025-7844

CVE-2025-7844 affects wolfTPM (wolfSSL) via wolfTPM2_RsaKey_TpmToWolf: exporting an RSA key >2048 bits from a TPM can overflow a fixed-size stack buffer when MAX_RSA_KEY_BITS is 2048. Root cause: copying external data to a stack buffer without length validation. If MAX_RSA_KEY_BITS matches the...

1CVSS6.8AI score0.00143EPSS
Exploits0References1
Veracode
Veracode
added 2025/07/16 5:21 a.m.6 views

Denial Of Service (DoS)

libp2p is vulnerable to Denial Of Service DoS. The vulnerability is due to insufficient validation of RSA key sizes, which allows an attacker to send a large RSA key and exhaust system resources...

4.3CVSS6.1AI score0.00311EPSS
Exploits0References6Affected Software1
Amazon
Amazon
added 2025/03/06 12:0 a.m.4 views

Medium: ecs-init

Issue Overview: Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192 bits. Based on a survey of publicly trusted RSA keys, there are...

5.3CVSS7.2AI score0.01328EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.7 views

Amazon Linux 2 : ecs-init (ALASECS-2025-051)

The version of ecs-init installed on the remote host is prior to 1.75.3-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-051 advisory. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures...

5.3CVSS7AI score0.01328EPSS
Exploits0References4
OSV
OSV
added 2025/02/26 2:23 a.m.11 views

CVE-2022-49563 crypto: qat - add param check for RSA

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - add param check for RSA Reject requests with a source buffer that is bigger than the size of the key. This is to prevent a possible integer underflow that might happen when copying the source scatterlist into a line...

5.5CVSS5.5AI score0.00254EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.36 views

RHEL 8 : container-tools:4.0 (RHSA-2024:0121)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0121 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang:...

7.5CVSS7.2AI score0.02513EPSS
Exploits1References21
Amazon
Amazon
added 2024/01/08 12:0 a.m.4 views

Important: ecs-init

Issue Overview: The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS7.1AI score0.01328EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.45 views

Oracle Linux 9 : buildah (ELSA-2023-7764)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7764 advisory. 1.31.3-2.0.1 - Rebuild for CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 Tenable has extracted the preceding...

7.5CVSS7.1AI score0.01328EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/12/12 12:0 a.m.37 views

RHEL 9 : podman (RHSA-2023:7765)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7765 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use contain...

7.5CVSS7.2AI score0.01328EPSS
Exploits0References13
Amazon
Amazon
added 2023/10/19 12:0 a.m.10 views

Important: docker

Issue Overview: http2/hpack: avoid quadratic complexity in hpack decoding CVE-2022-41723 Templates did not properly consider backticks as Javascript string delimiters, and as such did not escape them as expected. Backticks are used, since ES6, for JS template literals. If a template contained a G...

9.8CVSS7.6AI score0.04561EPSS
Exploits0
Amazon
Amazon
added 2023/10/17 12:0 a.m.5 views

Important: docker

Issue Overview: http2/hpack: avoid quadratic complexity in hpack decoding CVE-2022-41723 Templates did not properly consider backticks as Javascript string delimiters, and as such did not escape them as expected. Backticks are used, since ES6, for JS template literals. If a template contained a G...

9.8CVSS7.6AI score0.04561EPSS
Exploits0
Amazon
Amazon
added 2023/09/20 12:0 a.m.7 views

Important: amazon-ecr-credential-helper

Issue Overview: The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS7.1AI score0.01328EPSS
Exploits0
Amazon
Amazon
added 2023/08/25 12:0 a.m.8 views

Medium: amazon-cloudwatch-agent

Issue Overview: 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192...

5.3CVSS7.1AI score0.01328EPSS
Exploits0
Rows per page
Query Builder