Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/06/11 12:0 a.m.19 views

Axios 安全漏洞

Axios is an open-source HTTP client developed by Axios. Versions 1.7.0 to 1.15.x of Axios contain security vulnerabilities. These vulnerabilities stem from the lack of enforcement of request and response size limits when using the fetch adapter, which may lead to resource exhaustion...

7.5CVSS5.2AI score0.0063EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/18 10:10 p.m.11 views

CVE-2025-64324 KubeVirt Vulnerable to Arbitrary Host File Read and Write

KubeVirt is a virtual machine management add-on for Kubernetes. The hostDisk feature in KubeVirt allows mounting a host file or directory owned by the user with UID 107 into a VM. However, prior to version 1.6.1 and 1.7.0, the implementation of this feature and more specifically the DiskOrCreate...

8.5CVSS0.00212EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.4 views

PT-2025-43245

Name of the Vulnerable Software and Affected Versions Zippy versions through 1.7.0 Description The software contains a flaw related to unrestricted file uploads, allowing the use of malicious files. This could potentially allow an attacker to compromise the system. Recommendations Update to a...

9.1CVSS6.6AI score0.0043EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/08/30 6:17 p.m.6 views

CVE-2025-54725

Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo golo allows Authentication Abuse.This issue affects Golo: from n/a through = 1.7.0...

9.8CVSS5.9AI score0.00397EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2024/11/26 11:16 a.m.6 views

CVE-2024-47249

Improper Validation of Array Index vulnerability in Apache NimBLE. Lack of input validation for HCI events from controller could result in out-of-bound memory corruption and crash. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects...

5CVSS7.5AI score0.00597EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2024/07/17 3:52 p.m.4 views

dagster-dbt (>=0.20.5 <=0.21.6), dbt-dremio (=1.7.0) +9 more potentially affected by CVE-2024-40637 via dbt-core (>=1.7.0 <=1.7.13)

dbt-core PYPI version =1.7.0, =0.20.5, =1.7.0, =0.0.2, =1.7.0, =0.0.4, =0.203.0.dev5, =0.0.1rc8, =0.4.2, =0.8.0 Source cves: CVE-2024-40637 Source advisory: OSV:GHSA-P3F3-5CCG-83XQ...

7.8CVSS5.8AI score0.00372EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2021/07/01 12:0 a.m.5 views

PT-2021-21109 · Unknown · Fluent-Bit

Name of the Vulnerable Software and Affected Versions: Fluent Bit aka fluent-bit versions 1.7.0 through 1.7.4 Description: The issue is related to a double free in the flb free function, which is called from flb parser json do and flb parser do. Recommendations: For Fluent Bit aka fluent-bit...

9.8CVSS6.9AI score0.02384EPSS
Exploits1References7
Rows per page
Query Builder