Lucene search
K

7041 matches found

NVD
NVD
added 2025/07/24 11:15 p.m.7 views

CVE-2025-54369

Node-SAML is a SAML library not dependent on any frameworks that runs in Node. In versions 5.0.1 and below, Node-SAML loads the assertion from the unsigned original response document. This is different than the parts that are verified when checking signature. This allows an attacker to modify...

9.3CVSS0.00405EPSS
Exploits0References3
OSV
OSV
added 2025/07/24 11:15 p.m.7 views

CVE-2025-54369 Node-SAML SAML Authentication Bypass

Node-SAML is a SAML library not dependent on any frameworks that runs in Node. In versions 5.0.1 and below, Node-SAML loads the assertion from the unsigned original response document. This is different than the parts that are verified when checking signature. This allows an attacker to modify...

9.3CVSS6.8AI score0.00405EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2025/07/23 11:3 p.m.10 views

K000152700: BIND vulnerability CVE-2025-40775

Security Advisory Description When an incoming DNS protocol message includes a Transaction Signature TSIG, BIND always checks it. If the TSIG contains an invalid value in the algorithm field, BIND immediately aborts with an assertion failure. This issue affects BIND 9 versions 9.20.0 through 9.20...

7.5CVSS7.9AI score0.11727EPSS
Exploits1
Hacker One
Hacker One
added 2025/07/22 12:42 p.m.10 views

curl: Use after free (or assert triggered) with failed allocations in openssl

Summary: summary of the vulnerability A heap use after free or assertion can be triggered if some allocations fail I am not sure you consider allocations failures to be part of security issues, and I am not sure the issue lies in curl or in openssl, but I still think you want something to be fixe...

6.9AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2025/07/22 12:31 p.m.3 views

CVE-2025-34142

An XML External Entity XXE injection vulnerability exists in ETQ Reliance on the CG legacy platform within the /resources/sessions/sso endpoint. The SAML authentication handler processes XML input without disabling external entity resolution, allowing crafted SAML responses to invoke external...

6.9CVSS6AI score0.00894EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/22 12:0 a.m.3 views

PT-2025-34401

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0-rc6-syzkaller-00002-g155a3c003e55 Description: The Linux kernel contained a flaw in the netfilter bpf Berkeley Packet Filter functionality. Specifically, the nf hook run bpf function did not disable...

5.5CVSS5.9AI score0.00145EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.4 views

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the use of the assert function. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

6.5CVSS5.5AI score0.00259EPSS
Exploits0References3Affected Software2
CNVD
CNVD
added 2025/07/18 12:0 a.m.70 views

Apache HTTP Server Denial of Service Vulnerability (CNVD-2025-16603)

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A denial of service vulnerability exists in Apache HTTP Server, which stems from a modproxyhttp2 assertion failure that can be...

7.5CVSS6.8AI score0.01149EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 10:54 a.m.3 views

CLSA-2025-1752749664 libreswan: Fix of CVE-2024-3652

CVE-2024-3652: fix assertion failure and crash caused by requesting AES-GMAC without specifying esp= line...

6.5CVSS6.6AI score0.008EPSS
Exploits0References1
Slackware Linux
Slackware Linux
added 2025/07/16 8:33 p.m.5 views

[slackware-security] bind

New bind packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bind-9.18.38-i586-1slack15.0.txz: Upgraded. Fix a possible assertion failure when using the 'stale-answer-client-timeout 0' option. For...

7.5CVSS6.6AI score0.00877EPSS
Exploits0
NVD
NVD
added 2025/07/16 6:15 p.m.6 views

CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS0.00877EPSS
Exploits0References2
OSV
OSV
added 2025/07/16 6:15 p.m.4 views

CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS7.1AI score0.00877EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 6:15 p.m.2 views

DEBIAN-CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS7.5AI score0.00877EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/07/16 5:38 p.m.4 views

CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS6.5AI score0.00877EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/07/16 5:38 p.m.2 views

CVE-2025-40777 A possible assertion failure when 'stale-answer-client-timeout' is set to '0'

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS7.1AI score0.00877EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 5:38 p.m.8 views

CVE-2025-40777 A possible assertion failure when 'stale-answer-client-timeout' is set to '0'

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

7.5CVSS0.00877EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 5:38 p.m.62 views

CVE-2025-40777

Summary: CVE-2025-40777 affects ISC BIND 9 where a named caching resolver configured with serve-stale-enable=yes and stale-answer-client-timeout=0 can abort due to an assertion failure while resolving a CNAME chain. Affected versions include BIND 9.20.0–9.20.10, 9.21.0–9.21.9, and 9.20.9-S1–9.20....

7.5CVSS6.5AI score0.00877EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.2 views

ISC BIND 9 安全漏洞

ISC BIND 9 is a Domain Name System software from the ISC organization. A security vulnerability exists in ISC BIND 9 that stems from an assertion failure that could result in service suspension. The following versions are affected: versions 9.20.0 through 9.20.10, 9.21.0 through 9.21.9, and...

7.5CVSS7.5AI score0.00877EPSS
Exploits0References3
OSV
OSV
added 2025/07/12 7:15 p.m.5 views

CVE-2025-7485

A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function ngaprecvhandler/s1aprecvhandler/recvhandler of the component SCTP Partial Message Handler. The manipulation leads to reachable assertion. The attack needs to be approached...

4.8CVSS3.8AI score
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/07/12 6:32 p.m.4 views

CVE-2025-7485 Open5GS SCTP Partial Message recv_handler assertion

A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function ngaprecvhandler/s1aprecvhandler/recvhandler of the component SCTP Partial Message Handler. The manipulation leads to reachable assertion. The attack needs to be approached...

4.8CVSS3.9AI score0.00198EPSS
Exploits1References6
Rows per page
Query Builder