Lucene search
K

104 matches found

Debian CVE
Debian CVE
added 2026/03/05 9:26 a.m.4 views

CVE-2025-11143

The Jetty URI parser has some key differences to other common parsers when evaluating invalid or unusual URIs. Differential parsing of URIs in systems using multiple components may result in security by-pass. For example a component that enforces a black list may interpret the URIs differently fr...

6.5CVSS7.2AI score0.00159EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/01/26 9:44 a.m.3 views

CVE-2025-27821 HDFS native client: Out of bounds write in URI parser of native HDFS client

Out-of-bounds Write vulnerability in Apache Hadoop HDFS native client. This issue affects Apache Hadoop: from 3.2.0 before 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes the issue...

5.8AI score0.00862EPSS
Exploits0References1
CVE
CVE
added 2026/01/26 9:44 a.m.92 views

CVE-2025-27821

Summary: CVE-2025-27821 is an out-of-bounds write vulnerability in the Apache Hadoop HDFS native client, specifically in the URI parser. The issue affects Hadoop 3.2.0 up to, but not including, 3.4.2. Multiple sources (NVD, Red Hat, OSV, GHSA, CVE list, Snyk, and others) describe the same flaw an...

7.3CVSS5.8AI score0.00862EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/26 9:44 a.m.30 views

CVE-2025-27821 HDFS native client: Out of bounds write in URI parser of native HDFS client

Out-of-bounds Write vulnerability in Apache Hadoop HDFS native client. This issue affects Apache Hadoop: from 3.2.0 before 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes the issue...

0.00862EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/25 12:0 a.m.11 views

PT-2026-4646

Name of the Vulnerable Software and Affected Versions Apache Hadoop versions affected versions not specified Description An out-of-bounds write flaw exists in the Hadoop HDFS client's URI parser. This issue affects the native client. Recommendations At the moment, there is no information about a...

7.3CVSS5.9AI score0.00862EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : raptor2-2.0.15-17.el8_10 (AXSA:2025-9547:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9547:01 advisory. raptor: integer underflow when normalizing a URI with the turtle parser CVE-2024-57823 Tenable has extracted the preceding description block directly from th...

9.3CVSS8.2AI score0.00315EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/12/16 12:23 a.m.5 views

SUSE CVE-2025-67899

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas...

4CVSS7AI score0.0012EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.9 views

TencentOS Server 3: ruby:3.1 (TSSA-2024:0106)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0106 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS8.1AI score0.02637EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 3: ruby (TSSA-2024:0331)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0331 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS8.5AI score0.02637EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0154

Malware in sbrugna...

6.1CVSS6.5AI score0.01512EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0161

Malware in sbrugna...

7.8CVSS6.1AI score0.02092EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-1038

Malicious code in bioql PyPI...

5.3CVSS6.1AI score0.02637EPSS
Exploits0References31
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-56459

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00701EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0412

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00601EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-55763

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 latest allows a remote attacker to achieve remote code execution via a crafted HTTP request. Thi...

7.5CVSS6.8AI score0.01116EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/08/31 8:51 a.m.3 views

CVE-2025-55763

A buffer overflow flaw was found in CivetWeb. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to a denial of service or arbitrary code execution. Mitigation Mitigation for this issue is either not available or the...

7.5CVSS7AI score0.01116EPSS
Exploits2References2
OSV
OSV
added 2025/08/29 5:15 p.m.2 views

DEBIAN-CVE-2025-55763

Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 latest allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of...

7.5CVSS6.7AI score0.01116EPSS
Exploits2References1
OSV
OSV
added 2025/08/29 5:15 p.m.3 views

UBUNTU-CVE-2025-55763

Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 latest allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of...

7.5CVSS6.6AI score0.01116EPSS
Exploits2References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/29 2:35 p.m.4 views

Security Bulletin: The HttpURI class does insufficient validation on the authority segment of a URI, which affects IBM watsonx.data

Summary Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It includes a utility class, HttpURI, for URI/URL parsing. The HttpURI class does insufficient validation on the authority segment of a URI. However the behaviour of HttpURI differs from the common...

5.3CVSS8.5AI score0.00986EPSS
Exploits1Affected Software1
Cvelist
Cvelist
added 2025/08/29 12:0 a.m.7 views

CVE-2025-55763

Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 latest allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of...

0.01116EPSS
Exploits2References2
Rows per page
Query Builder