Lucene search
+L

5 matches found

Snyk
Snyk
added 2026/05/08 5:24 p.m.8 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via ExternalSecret resource handling for Service Account tokens. A user can impersonate service accounts by crafting ExternalSecret resources that cause the operator to create Secrets populated with long-lived...

6.9CVSS5.9AI score0.00214EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/24 12:0 a.m.6 views

PT-2023-24191

Name of the Vulnerable Software and Affected Versions ToUI versions 2.0.1 through 2.4.0 Description The issue affects websites that use the Website.user vars property. ToUI utilizes Flask-Caching SimpleCache to store user variables, which are stored on the server side. Recommendations For version...

9.1CVSS7.2AI score0.00651EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2020/04/14 12:0 a.m.7 views

PT-2020-6216 · Ilmbase +4 · Openexr +4

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 2.4.1 Description: The issue is related to integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock functions, allowing an attacker to write to an out-of-bounds pointer...

8.8CVSS6.5AI score0.0331EPSS
Exploits14References110
Positive Technologies
Positive Technologies
added 2020/04/14 12:0 a.m.3 views

PT-2020-6219 · Openexr +7 · Openexr +7

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 2.4.1 Description: The issue is related to an out-of-bounds read and write in the std::vector, as demonstrated by ImfTileOffsets.cpp. This can potentially allow a remote attacker to cause a denial of service. The...

8.8CVSS6.9AI score0.0331EPSS
Exploits14References149
Snyk
Snyk
added 2019/12/18 6:15 p.m.3 views

Arbitrary Code Execution

Overview apple/swift-nio-ssl is a TLS Support for SwiftNIO, based on BoringSSL. Affected versions of this package are vulnerable to Arbitrary Code Execution. The issue was addressed by signaling that an executable stack is not required. This issue is fixed in SwiftNIO SSL 2.4.1. A SwiftNIO...

9.8CVSS7.3AI score0.02212EPSS
Exploits0References2
Rows per page
Query Builder