Lucene search
+L

204 matches found

OSV
OSV
added 2024/07/11 5:15 p.m.6 views

AZL-71317 CVE-2024-6485 affecting package reaper for versions less than 3.1.1-22

A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the data-loading-text attribute within the button plugin. This vulnerability can be exploited by injecting malicious JavaScript code into the attribut...

6.4CVSS6.6AI score0.00494EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.38 views

CBL Mariner 2.0 Security Update: reaper (CVE-2024-4068)

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4068 advisory. - The NPM package braces, versions prior to 3.0.3, fails to limit the number of characters it can handle, which...

7.5CVSS6.8AI score0.01471EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.29 views

CBL Mariner 2.0 Security Update: reaper (CVE-2024-29041)

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29041 advisory. - Express.js minimalist web framework for node. Versions of Express.js prior to 4.19.0 and all pre-release alp...

6.1CVSS6.4AI score0.00786EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.36 views

CBL Mariner 2.0 Security Update: reaper (CVE-2024-28849)

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28849 advisory. - follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatically...

6.5CVSS6.6AI score0.01044EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/06/28 9:8 a.m.19 views

CVE-2018-14040 affecting package reaper for versions less than 3.1.1-1

CVE-2018-14040 affecting package reaper for versions less than 3.1.1-1. This CVE either no longer is or was never applicable...

6.1CVSS6.7AI score0.04135EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.24 views

CVE-2024-4067 affecting package reaper for versions less than 3.1.1-9

CVE-2024-4067 affecting package reaper for versions less than 3.1.1-9. A patched version of the package is available...

5.3CVSS7.7AI score0.01429EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.26 views

CVE-2024-29041 affecting package reaper for versions less than 3.1.1-9

CVE-2024-29041 affecting package reaper for versions less than 3.1.1-9. An upgraded version of the package is available that resolves this issue...

6.1CVSS6.4AI score0.00786EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.24 views

CVE-2024-4068 affecting package reaper for versions less than 3.1.1-9

CVE-2024-4068 affecting package reaper for versions less than 3.1.1-9. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.6AI score0.01471EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.26 views

CVE-2024-28849 affecting package reaper for versions less than 3.1.1-9

CVE-2024-28849 affecting package reaper for versions less than 3.1.1-9. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.6AI score0.01044EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.51 views

CVE-2023-46234 affecting package reaper for versions less than 3.1.1-9

CVE-2023-46234 affecting package reaper for versions less than 3.1.1-9. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00508EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.33 views

CVE-2022-26592 affecting package reaper for versions less than 3.1.1-9

CVE-2022-26592 affecting package reaper for versions less than 3.1.1-9. A patched version of the package is available...

8.8CVSS7AI score0.00782EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/06 7:53 p.m.42 views

CVE-2020-24025 affecting package reaper for versions less than 3.1.1-9

CVE-2020-24025 affecting package reaper for versions less than 3.1.1-9. A patched version of the package is available...

5.3CVSS6.9AI score0.0082EPSS
Exploits0
Kitploit
Kitploit
added 2024/06/01 12:30 p.m.64 views

Reaper - Proof Of Concept On BYOVD Attack

Reaper is a proof-of-concept designed to exploit BYOVD Bring Your Own Vulnerable Driver driver vulnerability. This malicious technique involves inserting a legitimate, vulnerable driver into a target system, which allows attackers to exploit the driver to perform malicious actions. Reaper was...

7.5AI score
Exploits0References2
OSV
OSV
added 2024/05/14 3:42 p.m.6 views

AZL-42034 CVE-2024-4068 affecting package reaper for versions less than 3.1.1-9

The NPM package braces, versions prior to 3.0.3, fails to limit the number of characters it can handle, which could lead to Memory Exhaustion. In lib/parse.js, if a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, which will cause the program to start allocating...

7.5CVSS6.7AI score0.01471EPSS
Exploits1References1
OSV
OSV
added 2024/03/21 11:15 p.m.8 views

AZL-37136 CVE-2024-28863 affecting package reaper for versions less than 3.1.1-17

node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few...

6.5CVSS6.5AI score0.00929EPSS
Exploits1References1
Chainguard
Chainguard
added 2024/03/21 9:31 a.m.51 views

GHSA-XJP4-HW94-MVP5 vulnerabilities

Vulnerabilities for packages: cassandra-reaper, trino, hadoop-client-modules, celeborn, druid, tez...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2024/03/21 9:31 a.m.16 views

GHSA-9W38-P64V-XPMV vulnerabilities

Vulnerabilities for packages: cassandra-reaper, trino, hadoop-client-modules, celeborn, druid, tez...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2024/03/21 9:15 a.m.82 views

CVE-2024-29131 vulnerabilities

Vulnerabilities for packages: cassandra-reaper, trino, hadoop-client-modules, celeborn, druid, tez...

7.3CVSS6.2AI score0.02054EPSS
Exploits0
Chainguard
Chainguard
added 2024/03/21 9:15 a.m.43 views

CVE-2024-29133 vulnerabilities

Vulnerabilities for packages: cassandra-reaper, trino, hadoop-client-modules, celeborn, druid, tez...

5.4CVSS6.2AI score0.01727EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.26 views

CVE-2018-11694 affecting package reaper for versions less than 3.1.1-7

CVE-2018-11694 affecting package reaper for versions less than 3.1.1-7. A patched version of the package is available...

8.8CVSS9.3AI score0.01707EPSS
Exploits1
Rows per page
Query Builder