Lucene search
K

7 matches found

CVE
CVE
added 2026/04/22 4:9 p.m.10 views

CVE-2026-35377

The CVE-2026-35377 entry affects the uutils coreutils env utility. A logic error in handling the -S (split-string) mode causes incorrect parsing of command-line arguments; specifically, in contrast to GNU env, the implementation attempts to validate backslash sequences inside single quotes and fa...

3.3CVSS5.8AI score0.00102EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.9 views

vLLM code issues and vulnerabilities

vLLM is an open-source solution designed for LLM-based models, featuring high throughput and memory-efficient reasoning and service engines. Prior to vLLM 0.14.1, there were code-related vulnerabilities. These vulnerabilities stemmed from differences in the interpretation of backslashes by variou...

7.1CVSS6.8AI score0.00528EPSS
Exploits1References3
OSV
OSV
added 2022/10/27 4:15 p.m.36 views

CVE-2022-3095

The implementation of backslash parsing in the Dart URI class for versions prior to 2.18 and Flutter versions prior to 3.30 differs from the WhatWG URL standards. Dart uses the RFC 3986 syntax, which creates incompatibilities with the '' characters in URIs, which can lead to auth bypass in webapp...

9.8CVSS6.9AI score
Exploits0References1
NVD
NVD
added 2022/10/27 4:15 p.m.20 views

CVE-2022-3095

The implementation of backslash parsing in the Dart URI class for versions prior to 2.18 and Flutter versions prior to 3.30 differs from the WhatWG URL standards. Dart uses the RFC 3986 syntax, which creates incompatibilities with the '' characters in URIs, which can lead to auth bypass in webapp...

9.8CVSS0.00867EPSS
Exploits0References1
Prion
Prion
added 2022/10/27 4:15 p.m.22 views

Design/Logic Flaw

The implementation of backslash parsing in the Dart URI class for versions prior to 2.18 and Flutter versions prior to 3.30 differs from the WhatWG URL standards. Dart uses the RFC 3986 syntax, which creates incompatibilities with the '' characters in URIs, which can lead to auth bypass in webapp...

7.5CVSS9.4AI score0.00867EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/10/27 12:0 a.m.164 views

CVE-2022-3095

CVE-2022-3095 affects Dart/Flutter: the Dart URI class uses RFC 3986 syntax for backslash parsing, diverging from WhatWG URL standards and causing incompatibilities with \ in URIs. This can enable authentication bypass in web apps that parse URIs. Affected: Dart versions prior to 2.18 and Flutter...

9.8CVSS9.6AI score0.00867EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/03/11 8:0 p.m.2 views

CVE-2022-25839

The package url-js before 2.1.0 are vulnerable to Improper Input Validation due to improper parsing, which makes it is possible for the hostname to be spoofed. http://\\\\localhost and http://localhost are the same URL. However, the hostname is not parsed as localhost, and the backslash is...

5.3CVSS6AI score0.00836EPSS
Exploits1References3
Rows per page
Query Builder