Lucene search
K

107 matches found

OSV
OSV
added 2026/06/25 6:53 p.m.4 views

GHSA-V72X-2H86-7F8M MessagePack-CSharp: LZ4 decompression allocates from unbounded declared output lengths

Summary When MessagePack-CSharp decompresses Lz4Block or Lz4BlockArray payloads, it reads declared uncompressed lengths from the wire and allocates output buffers based on those lengths before validating that the compressed data is valid or that the declared expansion is reasonable. A small paylo...

7.5CVSS5.9AI score0.00236EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/11/13 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2024-0360)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.0197EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2024/11/01 12:0 a.m.1049 views

Ping Identity PingIDM 7.5.0 Query Filter Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Query Filter Injection product: Ping Identity PingIDM formerly known as ForgeRock Identity Management vulnerable version: v7.0.0 - v7.5.0 and older unsupported versions...

2.7CVSS7.1AI score0.00671EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/08/26 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2024:3003-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.00977EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/08/13 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2024:2876-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.00977EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/06/29 12:0 a.m.26 views

openSUSE Security Advisory (SUSE-SU-2024:1530-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.7AI score0.01385EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/06/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2024:2061-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS9.1AI score0.0107EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/06/10 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2024-0214)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00293EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/06/05 12:0 a.m.11 views

openSUSE Security Advisory (SUSE-SU-2024:1770-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.72648EPSS
Exploits20References5
OpenVAS
OpenVAS
added 2024/05/15 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2024-1607)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.01614EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.20 views

RHEL 8 : nodejs-css-what (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nodejs-css-what: does not ensure that attribute parsing has linear time complexity relative to the size of the inpu...

7.3AI score0.02267EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/05/09 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2024-0171)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.3AI score0.00346EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/04/23 12:0 a.m.19 views

openSUSE Security Advisory (SUSE-SU-2024:1350-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.00847EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.22 views

CentOS: Security Advisory for ipa-client (CESA-2024:0145)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.0057EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.16 views

openSUSE: Security Advisory for MozillaThunderbird (SUSE-SU-2023:4588-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.01406EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.25 views

openSUSE: Security Advisory for MozillaThunderbird (SUSE-SU-2023:3664-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.99735EPSS
Exploits9References4
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.19 views

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2023:3519-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.00756EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/01/15 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2024-0006)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.20472EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/11/23 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2023:4533-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.01585EPSS
Exploits0References5
Amazon
Amazon
added 2023/10/05 12:0 a.m.50 views

Important: bind

Issue Overview: The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of availab...

7.5CVSS7.1AI score0.02626EPSS
Exploits0
Rows per page
Query Builder