Lucene search
K

9 matches found

Snyk
Snyk
added 2026/06/19 8:47 p.m.6 views

Infinite loop

Overview Affected versions of this package are vulnerable to Infinite loop in the AtomicReferenceupdate function when the current value is Float::NAN. An attacker can cause indefinite busy retry loops and CPU exhaustion by supplying malicious numeric data. Remediation Upgrade concurrent-ruby to...

8.2CVSS5.9AI score0.00278EPSS
Exploits1References2
OSV
OSV
added 2026/03/09 9:30 a.m.3 views

GHSA-74CF-PGH9-M5Q2 Apache IoTDB has an Insecure Default Configuration Vulnerability

A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

9.8CVSS5.8AI score0.00584EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/09 9:30 a.m.6 views

EUVD-2026-10310

Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

5.8AI score0.00662EPSS
Exploits0References2
NVD
NVD
added 2026/03/09 9:16 a.m.5 views

CVE-2026-24713

Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

9.8CVSS0.00662EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/09 8:59 a.m.4 views

CVE-2026-24713 Apache IoTDB: JEXL Expression Injection Vulnerability

Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

5.8AI score0.00662EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/09 8:59 a.m.3 views

CVE-2026-24713

Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

5.8AI score0.00662EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/09 8:57 a.m.36 views

CVE-2026-24015 Apache IoTDB: Insecure Default Configuration Vulnerability

A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue...

0.00584EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/20 11:0 p.m.13 views

Security Bulletin: IBM Aspera faspio Gateway 1.3.7 has addressed a vulnerability affected by weak cryptographic algorithms

Summary Aspera faspio Gateway uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive information Vulnerability Details CVEID:CVE-2025-14480 DESCRIPTION: Aspera faspio Gateway uses weaker than expected cryptographic algorithms that could allow an...

7.5CVSS5.4AI score0.00167EPSS
Exploits0Affected Software5
Positive Technologies
Positive Technologies
added 2023/05/31 12:0 a.m.9 views

PT-2023-10171 · Bestwebsoft · Bestwebsoft Twitter Plugin

Name of the Vulnerable Software and Affected Versions: BestWebSoft Twitter Plugin versions up to 1.3.2 Description: A vulnerability was found in the BestWebSoft Twitter Plugin. It affects the function twttr settings page of the file twitter.php. The manipulation of the argument twttr url...

6.1CVSS4AI score0.00586EPSS
Exploits0References5
Rows per page
Query Builder