Lucene search
K

51 matches found

RedHat Linux
RedHat Linux
added 2025/11/12 4:20 p.m.8 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/12 3:26 p.m.5 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/12 3:26 p.m.6 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
OSV
OSV
added 2025/11/12 12:0 a.m.6 views

ALSA-2025:21140 Important: idm:DL1 security update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV CVE-2025-59088 python-kdcproxy: Remot...

8.6CVSS6.5AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/03 8:18 p.m.4 views

rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)

A flaw was found in Rack where the Rack::Multipart::Parser buffers the multipart preamble memory without size limits. A remote attacker can send a crafted multipart/form-data request with a very large preamble before its first boundary, causing excessive memory consumption and denial of service...

7.5CVSS6.8AI score0.00868EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.3 views

Rack 资源管理错误漏洞

Rack is a modular Ruby web server interface open-sourced by Rack. A resource management error vulnerability exists in Rack versions prior to 2.2.19, prior to 3.1.17, and prior to 3.2.2, which stems from unrestricted buffering of multipart leading code by Rack::Multipart::Parser, which can lead to...

7.5CVSS6.8AI score0.00868EPSS
Exploits0References4
OSV
OSV
added 2025/08/11 1:52 p.m.7 views

BIT-LIBPYTHON-2024-12254 Unbounded memory buffering in SelectorSocketTransport.writelines()

Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically drain the write buffer...

8.7CVSS7.2AI score0.0188EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2024/12/19 8:0 a.m.8 views

Unbounded memory buffering in SelectorSocketTransport.writelines()

...

8.7CVSS7AI score0.0188EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/12/06 3:19 p.m.12 views

CVE-2024-12254 Unbounded memory buffering in SelectorSocketTransport.writelines()

Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically drain the write buffer...

8.7CVSS7AI score0.0188EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/04/03 12:0 a.m.3 views

PT-2024-40495 · Unknown · Amphp/Http +1

Name of the Vulnerable Software and Affected Versions: amphp/http-client versions 4.0.0-rc10 through 4.0.0 Description: The issue affects early versions of amphp/http-client with HTTP/2 support, causing the collection of HTTP/2 CONTINUATION frames in an unbounded buffer. This occurs because the...

8.2CVSS7.3AI score
Exploits0References4
CNNVD
CNNVD
added 2024/04/03 12:0 a.m.8 views

amphp http 安全漏洞

AMPHP is a collection of PHP event-driven libraries open-sourced by AMPHP. A security vulnerability exists in amphp http that stems from collecting CONTINUATION frames in an unbounded buffer and not checking the limit until it receives the set ENDHEADERS flag, resulting in an OOM crash...

8.2CVSS8.1AI score0.83244EPSS
Exploits1References2
Rows per page
Query Builder