Lucene search
K

426 matches found

Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.12 views

PT-2026-28120

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References2
OSV
OSV
added 2026/03/10 6:28 p.m.4 views

GO-2026-4593 Traefik has unbounded io.ReadAll on auth server response body that causes OOM DOS in github.com/traefik/traefik

Traefik has unbounded io.ReadAll on auth server response body that causes OOM DOS in github.com/traefik/traefik...

4.4CVSS5.8AI score0.00451EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/05 4:15 p.m.34 views

CVE-2026-26998 Traefik: unbounded io.ReadAll on auth server response body causes OOM denial of service(DOS)

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.38 and 3.6.9, there is a potential vulnerability in Traefik managing the ForwardAuth middleware responses. When Traefik is configured to use the ForwardAuth middleware, the response body from the authentication server is...

4.4CVSS0.00451EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.8 views

PT-2026-23083

Name of the Vulnerable Software and Affected Versions Traefik versions prior to 2.11.38 and 3.6.9 Description Traefik, an HTTP reverse proxy and load balancer, has a potential issue in how it manages responses from the ForwardAuth middleware. When configured to use ForwardAuth, the response body...

9.9CVSS5.9AI score0.22162EPSS
Exploits70References138
RedHat Linux
RedHat Linux
added 2026/02/04 7:51 p.m.5 views

cpython: Excessive read buffering DoS in http.client

A flaw was found in the http.client module in the Python standard library. When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This issue allows a malicious server to cause the client to read large amounts of data into...

7.5CVSS5.7AI score0.01525EPSS
Exploits0References6
OSV
OSV
added 2026/02/02 9:5 p.m.7 views

GO-2026-4348 Client DoS via malformed server response in github.com/theupdateframework/go-tuf

Client DoS via malformed server response in github.com/theupdateframework/go-tuf...

7.5CVSS5.9AI score0.0053EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/22 2:16 a.m.5 views

EUVD-2026-3673

go-tuf is a Go implementation of The Update Framework TUF. Starting in version 2.0.0 and prior to version 2.3.1, if the TUF repository or any of its mirrors returns invalid TUF metadata JSON valid JSON but not well formed TUF metadata, the client will panic during parsing, causing a denial of...

5.9CVSS5.4AI score0.0053EPSS
Exploits0References4
NVD
NVD
added 2026/01/16 6:16 p.m.7 views

CVE-2025-51602

mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server...

4.8CVSS0.00368EPSS
Exploits0References3
OSV
OSV
added 2026/01/14 1:23 p.m.3 views

OPENSUSE-SU-2026:20038-1 Security update for wget2

This update for wget2 fixes the following issues: Changes in wget2: - Update to release 2.2.1 Fix file overwrite issue with metalink CVE-2025-69194 bsc1255728 Fix remote buffer overflow in getlocalfilenamereal CVE-2025-69195 bsc1255729 Fix a redirect/mirror regression from 400713ca Use the local...

9.8CVSS6.1AI score0.00707EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.4 views

CVE-2019-11689

An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl fail to properly validate server responses and pass unsanitized text to the system shell, resulting in code execution as root...

9.3CVSS7.5AI score0.03165EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:15 a.m.9 views

CVE-2022-38113

This vulnerability discloses build and services versions in the server response header...

5.3CVSS6.9AI score0.00651EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/11/25 10:55 p.m.6 views

OneUptime is Vulnerable to Privilege Escalation via Login Response Manipulation

Summary During the login process, the server response included a parameter called isMasterAdmin. By intercepting and modifying this parameter value from false to true, a user is able to gain access to the admin dashboard interface. However, despite accessing the admin panel, the user does not hav...

8.2CVSS7AI score0.00264EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/10/14 5:45 p.m.11 views

MGASA-2025-0238 Updated fetchmail package fixes security vulnerability

It was discovered that fetchmail's SMTP client, when configured to authenticate, is susceptible to a protocol violation where, when a trusted but malicious or malfunctioning SMTP server responds to an authentication request with a "334" code but without a following blank on the line, it will...

5.9CVSS7.2AI score0.00384EPSS
Exploits0References4
NVD
NVD
added 2025/10/13 4:15 a.m.7 views

CVE-2025-31994

HCL Unica Campaign 12.1.10 is vulnerable to Reflected Cross-Site Scripting XSS where an attacker injects malicious script into an HTTP request, which is then reflected unsafely in the server's immediate response to the victim's browser, executing the script as if it originated from the trusted...

4.3CVSS0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2004-1050

Malware in sbrugna...

10CVSS6.1AI score0.03577EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-3480

Malware in sbrugna...

5.8CVSS6AI score0.0173EPSS
Exploits1References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-2915

Malware in sbrugna...

7.5CVSS6.1AI score0.06147EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1242

Malware in sbrugna...

5CVSS6.4AI score0.01221EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-19225

Malware in sbrugna...

5.3CVSS5.5AI score0.01273EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4135

Malware in sbrugna...

4.3CVSS6.4AI score0.01268EPSS
Exploits0References7
Rows per page
Query Builder