Lucene search
K

5 matches found

AlpineLinux
AlpineLinux
added 2026/05/07 7:41 p.m.21 views

CVE-2026-39823

CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a tag's attribute. If the URL content were to insert ASCII whitespaces around the '=' rune inside of the attribute, the escaper would fail to similarly escape it, leading to XSS...

6.1CVSS7.3AI score0.00328EPSS
Exploits0
Prion
Prion
added 2021/12/14 2:15 p.m.20 views

Buffer overflow

The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackers can construct a crafted...

7.5CVSS9.4AI score0.01921EPSS
Exploits0References4Affected Software6
Debian CVE
Debian CVE
added 2021/12/14 1:26 p.m.26 views

CVE-2021-44538

The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackers can construct a crafted...

9.8CVSS9.7AI score0.01921EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/12/14 1:26 p.m.59 views

CVE-2021-44538

The olmsessiondescribe function in Matrix libolm before 3.2.7 is vulnerable to a buffer overflow. The Olm session object represents a cryptographic channel between two parties. Therefore, its state is partially controllable by the remote party of the channel. Attackers can construct a crafted...

9.8CVSS9.7AI score0.01921EPSS
Exploits0
Veracode
Veracode
added 2021/12/14 9:32 a.m.15 views

Denial Of Service (DoS)

riot-web:edge is vulnerable to denial of service. Attackers sending a malicious sequence of messages can manipulate the state of the receiver's session in such a way that, for some buffer sizes, a buffer overflow happens on a call to olmsessiondescribe. Furthermore, safe buffer sizes were...

9.8CVSS2.2AI score0.01921EPSS
Exploits0References7Affected Software5
Rows per page
Query Builder