Lucene search
K

314 matches found

Cvelist
Cvelist
added 2023/07/26 12:0 a.m.26 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.6AI score0.00771EPSS
Exploits0References2
CVE
CVE
added 2023/07/26 12:0 a.m.413 views

CVE-2023-38285

CVE-2023-38285 affects Trustwave ModSecurity 3.x prior to 3.0.10. The root cause is Inefficient Algorithmic Complexity in certain input handling, leading to potential denial of service with network-based exploitation. The CVSS indicates network attack vector, low attack complexity, and high avail...

7.5CVSS7.3AI score0.00771EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/07/26 12:0 a.m.9 views

ModSecurity 安全漏洞

ModSecurity is an intrusion detection and blocking engine that can be run as a module of the Apache Web Server or as a standalone application to enhance the security of Web applications and protect them from known and unknown attacks. A security vulnerability exists in Trustwave ModSecurity versi...

7.5CVSS7AI score0.00771EPSS
Exploits0References4
NVD
NVD
added 2023/05/02 1:15 p.m.54 views

CVE-2023-2473

A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be...

7.5CVSS5.3AI score0.00929EPSS
Exploits0References3
Prion
Prion
added 2023/05/02 1:15 p.m.20 views

Design/Logic Flaw

A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be...

4CVSS7.5AI score0.00929EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2023/05/02 12:0 p.m.51 views

CVE-2023-2473

CVE-2023-2473 affects Dreamer CMS versions up to 4.1.3. The vulnerability resides in the Password Hash Calculation component, specifically the updatePwd function in the UserController.java, causing inefficient algorithmic complexity. The issue can be exploited remotely, with upgrade recommended a...

7.5CVSS5.8AI score0.00929EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/05/02 12:0 p.m.52 views

CVE-2023-2473 Dreamer CMS Password Hash Calculation UserController.java updatePwd algorithmic complexity

A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be...

4.3CVSS7.7AI score0.00929EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/05/02 12:0 p.m.12 views

CVE-2023-2473 Dreamer CMS Password Hash Calculation UserController.java updatePwd algorithmic complexity

A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be...

4.3CVSS4.7AI score0.00929EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.4 views

SUSE CVE-2007-6523

Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before 9.25 allows remote attackers to cause a denial of service CPU consumption via a crafted bitmap BMP file that triggers a large number of calculations and checks...

7.8CVSS6.6AI score0.02055EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:47 a.m.3 views

SUSE CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS8.8AI score0.12608EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:36 a.m.2 views

SUSE CVE-2013-4185

Algorithmic complexity vulnerability in OpenStack Compute Nova before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service nova-network consumption via a large number of...

4CVSS6.2AI score0.02087EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.4 views

SUSE CVE-2018-12558

The parse method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that caused this problem contained 30 form-field characters "\f"...

7.5CVSS7.4AI score0.0265EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:23 a.m.2 views

SUSE CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS7.3AI score0.01454EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/10/08 12:0 a.m.32 views

Debian dla-3139 : knot-resolver - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3139 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3139-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.3AI score0.01454EPSS
Exploits0References4
CNVD
CNVD
added 2022/09/28 12:0 a.m.38 views

NIC Knot Resolver Denial of Service Vulnerability

Knot Resolver is a cached DNS resolver implementation that includes a resolver library and daemon. A denial of service vulnerability exists in NIC Knot Resolver versions prior to 5.5.3. The vulnerability stems from not properly handling incoming error messages and can be exploited by a remote...

7.5CVSS7.1AI score0.01454EPSS
Exploits0References1
OSV
OSV
added 2022/09/23 4:15 p.m.16 views

CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS7.4AI score
Exploits0References5
OSV
OSV
added 2022/09/23 4:15 p.m.1 views

DEBIAN-CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS7.3AI score0.01454EPSS
Exploits0References1
NVD
NVD
added 2022/09/23 4:15 p.m.17 views

CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS0.01454EPSS
Exploits0References5
OSV
OSV
added 2022/09/23 4:15 p.m.2 views

UBUNTU-CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS5.8AI score0.01454EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2022/09/23 4:15 p.m.29 views

CVE-2022-40188

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service CPU consumption because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets...

7.5CVSS7.1AI score0.01454EPSS
Exploits0References5
Rows per page
Query Builder