Lucene search
+L

15608 matches found

vulnrichment
vulnrichment
added 2026/06/02 6:23 p.m.11 views

CVE-2026-42342 React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS5.8AI score0.00299EPSS
Exploits0References1
osv
osv
added 2026/06/02 6:23 p.m.1 views

CVE-2026-42342 React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS5.9AI score0.00299EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.18 views

PT-2026-45835

Name of the Vulnerable Software and Affected Versions react-router versions 7.0.0 through 7.14.x @remix-run/server-runtime versions 2.10.0 through 2.17.4 Description Certain crafted requests can cause unbounded path expansion in the " manifest" endpoint, leading to disproportionate server resourc...

7.5CVSS5.8AI score0.00299EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/06/01 10:5 p.m.13 views

CVE-2025-59604 NULL Pointer Dereference in SPS Applications

Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer...

7.8CVSS5.8AI score0.00075EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/01 10:5 p.m.40 views

CVE-2025-59604 NULL Pointer Dereference in SPS Applications

Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer...

7.8CVSS0.00075EPSS
Exploits0References1
snyk
snyk
added 2026/06/01 9:0 p.m.12 views

Malicious Package

Overview ishowfeet15 is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate...

9.8CVSS5.8AI score
Exploits0References2
snyk
snyk
added 2026/06/01 9:0 p.m.14 views

Malicious Package

Overview ratelimitsucks is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate...

9.8CVSS5.8AI score
Exploits0References2
snyk
snyk
added 2026/06/01 9:0 p.m.13 views

Malicious Package

Overview abuden229 is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate advertisin...

9.8CVSS5.8AI score
Exploits0References2
snyk
snyk
added 2026/06/01 9:0 p.m.12 views

Malicious Package

Overview ishowfeet10 is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate...

9.8CVSS5.8AI score
Exploits0References2
fedora
fedora
added 2026/06/01 12:49 a.m.16 views

[SECURITY] Fedora 44 Update: libsoup3-3.6.6-8.fc44

Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications...

8.2CVSS5.8AI score0.00254EPSS
Exploits1
cnnvd
cnnvd
added 2026/06/01 12:0 a.m.11 views

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from a logical error in the resumeConfigurationDispatch function within ActivityRecord.java. This vulnerability may lead to the startup of...

7.8CVSS5.3AI score0.00082EPSS
Exploits0References1
fedora
fedora
added 2026/05/30 1:8 a.m.19 views

[SECURITY] Fedora 43 Update: docker-compose-5.1.4-1.fc43

Define and run multi-container applications with Docker...

9.8CVSS7.1AI score0.00498EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/05/29 12:0 a.m.18 views

PT-2026-44845

Name of the Vulnerable Software and Affected Versions Home Assistant Companion app for iOS versions prior to 2026.4.1 Home Assistant Companion app for Android versions prior to 2026.4.4 Description The Home Assistant Companion apps for Android and iOS expose a JavaScript bridge to the in-app...

8.3CVSS6AI score0.00136EPSS
Exploits0References4
packetstormnews
packetstormnews
added 2026/05/28 12:0 a.m.26 views

Honeyval: A Comprehensive Evaluation Framework for LLM-Powered HTTP Honeypots

Honeypots are decoy systems mimicking real system components designed to defend against cyber attacks. Recently, LLMs increasingly serve as simulation backbones for honeypots. They enable defenders to construct high-interaction honeypots with low system security risks. However, LLM-powered honeyp...

5.8AI score
Exploits0
vulnrichment
vulnrichment
added 2026/05/27 1:21 p.m.11 views

CVE-2026-9035 Multiple vulnerabilities in Aspera applications.

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a potential arbitrary file read in the asperahttpd component. An authenticated user may be ab...

6.5CVSS5.9AI score0.00325EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/26 12:0 a.m.12 views

SAP Gateway 安全漏洞

SAP Gateway is a framework based on open standards developed by SAP, a German company. This product allows non-SAP applications to connect to SAP applications, as well as access SAP applications on mobile devices. There is a security vulnerability in SAP Gateway, which allows attackers to inject...

4.3CVSS5.8AI score0.00258EPSS
Exploits0References2
fedora
fedora
added 2026/05/23 12:58 a.m.20 views

[SECURITY] Fedora 44 Update: dotnet10.0-10.0.108-1.fc44

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

7.5CVSS5.7AI score0.0243EPSS
Exploits0
packetstormnews
packetstormnews
added 2026/05/22 12:0 a.m.35 views

Validating Threat Modeling Results with the Help of Vulnerable Test Applications

Validating threat modeling results remains difficult because completeness is hard to judge without an external oracle. Existing studies often rely on expert-produced reference models and other human baselines, but these can contain omissions or disagreements. This paper evaluates a complementary,...

5.8AI score
Exploits0
suse
suse
added 2026/05/20 7:23 a.m.9 views

Security update for openssh

This update for openssh fixes the following issues Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise Micro for Rancher 5.3...

7.5CVSS6AI score0.00419EPSS
Exploits0References8
astralinux
astralinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux - Vulnerability in Firefox and Thunderbird

Using XMLHttpRequest, an attacker could have identified installed applications by analyzing error messages related to loading external protocols. This vulnerability affects Thunderbird 91.4.0, Firefox ESR 91.4.0, and Firefox 95...

6.5CVSS6.6AI score0.01714EPSS
Exploits0References2
Rows per page
Query Builder