Lucene search
+L

6 matches found

OpenVAS
OpenVAS
added 2025/11/05 12:0 a.m.1 views

Mageia: Security Advisory (MGASA-2025-0256)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00626EPSS
Exploits0References4
OSV
OSV
added 2025/10/29 11:16 p.m.2 views

DEBIAN-CVE-2025-58186

Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does not have a limit. By sending a lot of very small cookies such as "a=;", an attacker can make an HTTP server allocate a large amount of structs, causing large memory consumption...

5.3CVSS7.8AI score0.00534EPSS
Exploits0References1
OSV
OSV
added 2025/10/29 11:16 p.m.6 views

AZL-78911 CVE-2025-58186 affecting package golang 1.25.7-1

Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does not have a limit. By sending a lot of very small cookies such as "a=;", an attacker can make an HTTP server allocate a large amount of structs, causing large memory consumption...

5.3CVSS7.2AI score0.00534EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/29 10:10 p.m.12 views

CVE-2025-58186 Lack of limit when parsing cookies can cause memory exhaustion in net/http

Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does not have a limit. By sending a lot of very small cookies such as "a=;", an attacker can make an HTTP server allocate a large amount of structs, causing large memory consumption...

0.00534EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/10/29 10:10 p.m.3 views

CVE-2025-58186

Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does not have a limit. By sending a lot of very small cookies such as "a=;", an attacker can make an HTTP server allocate a large amount of structs, causing large memory consumption...

5.3CVSS6.6AI score0.00534EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/10/14 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2025:03547-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.00626EPSS
Exploits0References14
Rows per page
Query Builder