Lucene search
K

344 matches found

Redos
Redos
added 2025/07/22 12:0 a.m.5 views

ROS-20250722-01

Vulnerability of the ComposeQueryEngine function UriQuery.c of the URI parsing and processing library uriparser is related to integer overflow. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code or cause a denial of service...

8.6CVSS7.5AI score0.01233EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 4: uriparser (TSSA-2024:0620)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0620 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.6CVSS6.8AI score0.01316EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.9 views

CVE-2024-34402 affecting package uriparser for versions less than 0.9.8-3

CVE-2024-34402 affecting package uriparser for versions less than 0.9.8-3. An upgraded version of the package is available that resolves this issue...

8.6CVSS6.9AI score0.01233EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.15 views

CVE-2024-34403 affecting package uriparser for versions less than 0.9.8-3

CVE-2024-34403 affecting package uriparser for versions less than 0.9.8-3. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.9AI score0.01316EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.10 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : uriparser vulnerabilities (USN-7356-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7356-1 advisory. It was discovered that uriparser did not correctly handle certain inputs, which could lead to...

8.6CVSS6.7AI score0.01316EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/03/20 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-7356-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.1AI score0.01316EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/03/19 12:54 a.m.19 views

USN-7356-1: uriparser vulnerabilities

It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-34402, CVE-2024-34403...

8.6CVSS6.9AI score0.01316EPSS
Exploits0
OSV
OSV
added 2025/03/19 12:54 a.m.3 views

USN-7356-1 uriparser vulnerabilities

It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-34402, CVE-2024-34403...

8.6CVSS6.1AI score0.01316EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/03/14 7:0 a.m.6 views

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

...

8.6CVSS7AI score0.01233EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/03/14 7:0 a.m.4 views

An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string.

...

5.9CVSS5.6AI score0.01316EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-51176

Name of the Vulnerable Software and Affected Versions uriparser versions through 0.9.9 Description The software is susceptible to an issue involving unbounded recursion and stack consumption. This occurs when processing large inputs containing numerous commas, specifically when using the...

2.9CVSS6.4AI score0.0012EPSS
Exploits0References40
OSV
OSV
added 2024/09/16 2:18 a.m.12 views

RHSA-2019:2280 Red Hat Security Advisory: uriparser security update

Bulletin has no description...

7.3CVSS9.4AI score0.02367EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.18 views

openSUSE Security Advisory (SUSE-SU-2024:1860-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6AI score0.01316EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.16 views

Photon OS 3.0: Uriparser PHSA-2024-3.0-0772

An update of the uriparser package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0772. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.6CVSS7.2AI score0.01233EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.22 views

Photon OS 4.0: Uriparser PHSA-2024-4.0-0654

An update of the uriparser package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0654. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.6CVSS6.1AI score0.01316EPSS
Exploits0References3
Photon
Photon
added 2024/07/17 12:0 a.m.24 views

Important Photon OS Security Update - PHSA-2024-3.0-0772

Updates of 'linux', 'uriparser' packages of Photon OS have been released...

8.6CVSS6.7AI score0.01233EPSS
Exploits0
Photon
Photon
added 2024/07/17 12:0 a.m.18 views

Important Photon OS Security Update - PHSA-2024-4.0-0654

Updates of 'uriparser' packages of Photon OS have been released...

8.6CVSS8.2AI score0.01316EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/07/05 12:0 a.m.5 views

The vulnerability of the ComposeQueryEngine function (UriQuery.c) in the URI syntax analysis and processing library uriparser allows a attacker to execute arbitrary code or cause service failures.

The vulnerability of the ComposeQueryEngine function UriQuery.c in the URI syntax analysis and processing library uriparser is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause service failures...

9CVSS7.3AI score0.01233EPSS
Exploits0References17Affected Software6
OSV
OSV
added 2024/06/07 11:8 a.m.4 views

OESA-2024-1690 uriparser security update

The package is a strictly RFC 3986 compliant URI parsing library written in C89"ANSI C". uriparser is cross-platform, fast, supports Unicode and is licensed under the New BSD license. There are a number of applications, libraries and hardware using uriparser, as well as bindings and 3rd-party...

8.6CVSS7.5AI score0.01233EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 7 : uriparser (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - uriparser: Out-of-bounds read in uriParseEx CVE-2018-20721 - An issue was discovered in uriparser before...

9.8CVSS7.2AI score0.02484EPSS
Exploits0References2
Rows per page
Query Builder