Lucene search
K

7041 matches found

RedHat Linux
RedHat Linux
added 2025/08/14 1:51 p.m.2 views

httpd: mod_proxy_http2: untrusted input from a client causes an assertion to fail in the Apache mod_proxy_http2 module

An assertion failure flaw was found in Apache httpd. Untrusted clients can send inputs that trigger an assertion failure in the modproxyhttp2 module, which likely results in an Apache HTTP server crash or denial of service DoS...

7.5CVSS5.8AI score0.01149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/14 1:43 p.m.4 views

httpd: mod_proxy_http2: untrusted input from a client causes an assertion to fail in the Apache mod_proxy_http2 module

An assertion failure flaw was found in Apache httpd. Untrusted clients can send inputs that trigger an assertion failure in the modproxyhttp2 module, which likely results in an Apache HTTP server crash or denial of service DoS...

7.5CVSS5.8AI score0.01149EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/08/13 8:31 a.m.8 views

CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS7.2AI score0.00186EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/12 10:31 a.m.6 views

CVE-2025-8804

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

7.5CVSS5.6AI score0.00726EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-25215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as...

7.5CVSS7.2AI score0.11296EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/08/11 11:23 p.m.3 views

SUSE CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

2.5CVSS4AI score0.00186EPSS
Exploits1References7
Snyk
Snyk
added 2025/08/11 8:41 a.m.2 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the jpcfloorlog2 function in the jpc/jpcenc.c of the component JPEG2000 Encoder. An attacker can cause the application to terminate unexpectedly by providing crafted input that triggers a reachable assertion in t...

4.8CVSS6.9AI score0.00186EPSS
Exploits1References2
NVD
NVD
added 2025/08/11 8:15 a.m.5 views

CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS0.00186EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2025/08/11 8:15 a.m.5 views

CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS7.2AI score0.00186EPSS
Exploits1References6
OSV
OSV
added 2025/08/11 8:15 a.m.6 views

CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS7AI score
Exploits0References6
OSV
OSV
added 2025/08/11 8:15 a.m.8 views

AZL-66165 CVE-2025-8836 affecting package jasper for versions less than 4.2.1-3

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS5AI score0.00186EPSS
Exploits1References1
OSV
OSV
added 2025/08/11 8:15 a.m.3 views

UBUNTU-CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS5AI score0.00186EPSS
Exploits1References8
CVE
CVE
added 2025/08/11 7:32 a.m.42 views

CVE-2025-8836

CVE-2025-8836 affects JasPer up to 4.2.5, where manipulation in jpc_floorlog2 (src/libjasper/jpc/jpc_enc.c - JPC Encoder) can trigger a reachable assertion. Exploitation is described as local; public exploit guidance exists. Remediation is available via patches, e.g., upgrade to JasPer 4.2.8 (ope...

4.8CVSS7.1AI score0.00186EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/08/11 7:32 a.m.10 views

CVE-2025-8836 JasPer JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS0.00186EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/08/11 7:32 a.m.1 views

CVE-2025-8836 JasPer JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS7.1AI score0.00186EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-27069

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ovl: relax WARNON in ovlverifyarea syzbot hit an assertion in copy up data loop which looks...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/11 12:0 a.m.5 views

PT-2025-32528

Name of the Vulnerable Software and Affected Versions: JasPer versions up to 4.2.5 Description: A vulnerability exists in JasPer up to version 4.2.5, specifically within the JPEG2000 Encoder component. The issue resides in the jpc floorlog2 function located in the src/libjasper/jpc/jpc enc.c file...

7.8CVSS4AI score0.00205EPSS
Exploits3References24
RedhatCVE
RedhatCVE
added 2025/08/10 6:14 p.m.12 views

CVE-2025-8733

A flaw was found in bison. The obstackvprintfinternal function in obprintf.c contains an issue where manipulation can lead to a reachable assertion, allowing a local attacker to trigger an assertion failure. This condition is exploitable via crafted input. The primary consequence of this...

4.8CVSS4AI score0.00019EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/08/10 10:2 a.m.3 views

CVE-2025-8804 Open5GS AMF ngap_build_downlink_nas_transport assertion

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS5.6AI score0.00726EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/08/10 12:0 a.m.7 views

PT-2025-32478 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5 Description: A vulnerability has been identified in Open5GS, classified as problematic. The vulnerability affects the ngap build downlink nas transport function within the AMF component. Manipulation of this...

7.5CVSS7.2AI score0.00726EPSS
Exploits1References17
Rows per page
Query Builder