Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2024/11/12 3:1 p.m.15 views

CVE-2024-39281 Unbounded allocation in ctl(4) CAM Target Layer

The command ctlpersistentreserveout allows the caller to specify an arbitrary size which will be passed to the kernel's memory allocator...

0.00135EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/11/12 12:0 a.m.2 views

FreeBSD 安全漏洞

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A security vulnerability exists in FreeBSD that stems from allowing a caller to specify an arbitrary size passed to the kernel memory allocator...

5.3CVSS6.6AI score0.00135EPSS
Exploits0References2
FreeBSD
FreeBSDadded 2024/10/29 12:0 a.m.10 views

FreeBSD -- Unbounded allocation in ctl(4) CAM Target Layer

Problem Description: The command ctlpersistentreserveout allows the caller to specify an arbitrary size which will be passed to the kernel's memory allocator. Impact: A malicious guest could cause a Denial of Service DoS on the host...

5.3CVSS7.2AI score0.00135EPSS
Exploits0
Veracode
Veracodeadded 2024/01/29 8:59 a.m.19 views

Buffer Overflow

libgpac.so is vulnerable to Buffer overflow. The vulnerability is due to a lack of size validation for the compressorname parameter within the gfisomnewgenericsampledescription function. An attacker can enter an arbitrary size which leads to buffer overflow...

7.8CVSS7AI score0.00124EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/02/16 12:0 a.m.16 views

CVE-2022-27897 Palantir Gotham included an endpoint that would log arbitrary sized zip files.

Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files to memory. An attacker could repeatedly upload a malicious zip file, which would allow them to exhaust memory resources on the dispatch server...

5.3CVSS7.7AI score0.0039EPSS
Exploits0References1
Mageia
Mageiaadded 2022/07/29 8:53 p.m.102 views

Updated python-ujson packages fix security vulnerability

Add support for arbitrary size integers. Replace 'wchart' string decoding implementation with a 'uint32t'-based one; fix handling of surrogates on decoding CVE-2022-31116 Potential double free of buffer during string decoding - Fix memory leak on encoding errors when the buffer was resized -...

7.5CVSS3AI score0.00173EPSS
Exploits1References2
Veracode
Veracodeadded 2020/05/19 7:8 a.m.23 views

Unrestricted File Upload

activestorage allows unrestricted file uploads. The Content-Length in signature for ActiveStorage direct upload is not validated, allowing an attacker upload a file with an arbitrary file size or bypass controls in place on the server...

7.5CVSS3.9AI score0.01549EPSS
Exploits1References4Affected Software2
OSV
OSVadded 2003/09/22 4:0 a.m.1 views

DEBIAN-CVE-2003-0775

saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has been sent, which allows remote attackers to cause a denial of service memory consumption or crash...

5CVSS7AI score0.01583EPSS
Exploits1References1
Rows per page
Query Builder