CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Positive Technologies•added 2026/06/17 12:0 a.m.•12 views

PT-2026-50601

Name of the Vulnerable Software and Affected Versions Deno versions prior to 2.7.5 Description A Deno program opening a client WebSocket connection can be crashed by a remote server. During the WebSocket handshake response, Deno parsed the 'Sec-WebSocket-Protocol' and 'Sec-WebSocket-Extensions'...

4.3CVSS5.9AI score

Exploits0References4

Tenable Nessus•added 2026/05/22 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: rubygem-websocket-extensions (UTSA-2026-016659)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016659 advisory. websocket-extensions ruby module prior to 0.1.5 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a head...

7.5CVSS7.1AI score0.04349EPSS

Exploits1References4

Packet Storm•added 2024/08/31 12:0 a.m.•177 views

ws Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ws - Denial of Service', 'Description' = %q This module exploits a Denial of Service vulnerability in npm module "ws". By sending a specially...

7.4AI score

Exploits0

RedhatCVE•added 2021/07/18 1:58 a.m.•122 views

CVE-2020-7662

websocket-extensions npm module prior to 0.1.4 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...

5CVSS4.2AI score0.02955EPSS

Exploits1References4

NVD•added 2020/06/02 7:15 p.m.•17 views

CVE-2020-7663

websocket-extensions ruby module prior to 0.1.5 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...

7.5CVSS7.3AI score0.04349EPSS

Exploits1References6

OSV•added 2020/06/02 7:15 p.m.•25 views

CVE-2020-7662

7.5CVSS6.9AI score

Exploits0References4

Prion•added 2020/06/02 7:15 p.m.•18 views

Design/Logic Flaw

5CVSS7.3AI score0.04349EPSS

Exploits1References6Affected Software3

UbuntuCve•added 2020/06/02 7:15 p.m.•26 views

CVE-2020-7663

7.5CVSS7.1AI score0.04349EPSS

Exploits1References6

OSV•added 2020/06/02 7:15 p.m.•0 views

UBUNTU-CVE-2020-7663

7.5CVSS7.3AI score0.04349EPSS

Exploits1References7

Cvelist•added 2020/06/02 6:28 p.m.•27 views

CVE-2020-7662

7.5AI score0.02955EPSS

Exploits1References4

CVE•added 2020/06/02 6:25 p.m.•179 views

CVE-2020-7663

The CVE-2020-7663 issue affects the ruby-websocket-extensions library (prior to 0.1.5). The parser can take quadratic time when processing a Sec-WebSocket-Extensions header containing an unclosed string parameter value with a repeating two‑byte sequence (backslash and a character), enabling Regex...

7.5CVSS7.2AI score0.04349EPSS

Exploits1References6Affected Software1

Cvelist•added 2020/06/02 6:25 p.m.•26 views

CVE-2020-7663

7.3AI score0.04349EPSS

Exploits1References6

Debian CVE•added 2020/06/02 6:25 p.m.•25 views

CVE-2020-7663

7.5CVSS7.5AI score0.04349EPSS

Exploits1

Metasploit•added 2017/12/07 3:45 p.m.•15 views

ws - Denial of Service

This module exploits a Denial of Service vulnerability in npm module "ws". By sending a specially crafted value of the Sec-WebSocket-Extensions header on the initial WebSocket upgrade request, the ws component will crash. This module requires Metasploit: https://metasploit.com/download Current...

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by