Lucene search
+L

155 matches found

osv
osv
added 2026/06/30 11:39 p.m.5 views

BIT-ENVOY-2026-48497 Envoy: Abnormal process termination in DNS UDP filter

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

7.5CVSS5.8AI score0.00405EPSS
Exploits0References2
nvd
nvd
added 2026/06/26 6:16 p.m.7 views

CVE-2026-48497

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

7.5CVSS0.00405EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/26 5:32 p.m.36 views

CVE-2026-48497 Envoy: Abnormal process termination in DNS UDP filter

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

5.9CVSS0.00405EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/26 5:32 p.m.8 views

CVE-2026-48497

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long...

5.9CVSS5.8AI score0.00405EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2026/03/27 12:0 a.m.3 views

Vulnerability of the smartcard_unpack_read_size_align() function in the RDP client FreeRDP, allowing a hacker to trigger an unexpected termination of the application

The vulnerability of the smartcardunpackreadsizealign function libfreerdp/utils/smartcardpack.c:1703 is related to the use of the assert or similar operator in the RDP client FreeRDP. Exploiting this vulnerability may allow a remote attacker to cause the application to terminate abnormally...

7.8CVSS6.6AI score0.00256EPSS
Exploits1References6Affected Software2
nvd
nvd
added 2025/10/10 11:15 a.m.8 views

CVE-2025-61862

An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS0.00156EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-38112

Malicious code in bioql PyPI...

7.7CVSS6.7AI score0.00838EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-41270

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00461EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-25235

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00232EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-45630

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0059EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31674

Malicious code in bioql PyPI...

8.7CVSS7.7AI score0.00439EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-28576

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.01016EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2025/09/30 12:0 a.m.11 views

PT-2025-39953

Name of the Vulnerable Software and Affected Versions Central Monitor CNS-6201 affected versions not specified Description The software contains a flaw where a specially crafted UDP packet can cause the device to stop functioning normally due to a NULL pointer dereference. Recommendations At the...

8.7CVSS7.5AI score0.00439EPSS
Exploits0References5
cnnvd
cnnvd
added 2025/09/30 12:0 a.m.5 views

Nihon Kohden Central Monitor CNS-6201 代码问题漏洞

Nihon Kohden Central Monitor CNS-6201 is a nursing station monitoring system from Nihon Kohden, Japan. A code issue vulnerability exists in Nihon Kohden Central Monitor CNS-6201, which stems from the presence of a null pointer dereference when processing specially crafted UDP packets, which could...

8.7CVSS7.4AI score0.00439EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/09/03 12:0 a.m.15 views

Envoy 资源管理错误漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A resource management error vulnerability exists in Envoy versions 1.34.0 through 1.34.4 and 1.35.0, which stems from the presence of post-release reuse in the DNS cache and could result in an abnormal process...

7.5CVSS6.5AI score0.0044EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/23 7:46 a.m.7 views

CVE-2024-24978

Denial-of-service DoS vulnerability exists in TvRock 0.9t8a. Receiving a specially crafted request by a remote attacker or having a user of TvRock click a specially crafted request may lead to ABEND abnormal end. Note that the developer was unreachable, therefore, users should consider stop using...

4.3CVSS6.9AI score0.00611EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:16 a.m.12 views

CVE-2023-41112

An issue was discovered in Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123. A buffer copy, without checking the size of the input, can cause...

7.5CVSS7AI score0.0059EPSS
Exploits0
f5
f5
added 2025/02/19 8:4 p.m.14 views

K000149304: OpenSSL vulnerability CVE-2024-6119

Security Advisory Description Issue summary: Applications performing certificate name checks e.g., TLS clients checking server certificates may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an...

7.5CVSS7.7AI score0.66594EPSS
Exploits0Affected Software3
ibm
ibm
added 2025/01/28 10:8 p.m.25 views

Security Bulletin: IBM Maximo Application Suite uses serve-static-1.15.0.tgz, send-0.18.0.tgz and cryptography-43.0.0-cp39-abi3-manylinux_2_28_x86_64.whl which is vulnerable to CVE-2024-43800 CVE-2024-43799 CVE-2024-6119.

Summary IBM Maximo Application Suite uses serve-static-1.15.0.tgz, send-0.18.0.tgz and cryptography-43.0.0-cp39-abi3-manylinux228x8664.whl which is vulnerable to CVE-2024-43800, CVE-2024-43799 and CVE-2024-6119. This bulletin contains information regarding the vulnerability and its fixture...

7.5CVSS8.1AI score0.66594EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/01/28 10:8 p.m.29 views

Security Bulletin:cryptography-42.0.7-cp39-abi3-manylinux_2_28_x86_64.whl Vulnerability Affects IBM Data Observability by Databand (CVE-2024-6119)

Summary A vulnerability in cryptography-42.0.7-cp39-abi3-manylinux228x8664.whl was addressed in IBM Data Observability by Databand Vulnerability Details CVEID:CVE-2024-6119 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an error when performing certificate name checks e.g.,...

7.5CVSS6.6AI score0.66594EPSS
Exploits0Affected Software1
Rows per page
Query Builder