Lucene search
K

15 matches found

NVD
NVD
added 2026/05/01 3:16 p.m.4 views

CVE-2026-43507

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by XML parsing resource amplification from unauthenticated connections...

7.5CVSS0.00348EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/01 3:16 p.m.4 views

CVE-2026-43507

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by XML parsing resource amplification from unauthenticated connections...

7.5CVSS5.8AI score0.00348EPSS
Exploits0References7
OSV
OSV
added 2026/05/01 3:16 p.m.4 views

UBUNTU-CVE-2026-43506

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by memory leaks from unauthenticated connections...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References7
OSV
OSV
added 2026/05/01 3:16 p.m.2 views

UBUNTU-CVE-2026-43505

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in the activation scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References4
OSV
OSV
added 2026/05/01 3:16 p.m.3 views

UBUNTU-CVE-2026-43507

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by XML parsing resource amplification from unauthenticated connections...

7.5CVSS5.8AI score0.00348EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:45 p.m.4 views

CVE-2026-43506

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by memory leaks from unauthenticated connections...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/01 2:45 p.m.15 views

CVE-2026-43506

CVE-2026-43506 affects Prosody: memory exhaustion-based DoS from unauthenticated connections. Vulnerable are Prosody releases prior to 0.12.6 and 1.0.0 through 13.0.4 (before 13.0.5). Impact is denial of service via memory leaks; no exploitation details are provided in the documents. Remediation:...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/01 2:45 p.m.30 views

CVE-2026-43506

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by memory leaks from unauthenticated connections...

5.3CVSS0.00279EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/01 2:42 p.m.4 views

CVE-2026-43505

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in the activation scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00204EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/01 2:40 p.m.5 views

CVE-2026-43504

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when modproxy65 is enabled. Because modproxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00256EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36481

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by memory leaks from unauthenticated connections...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/06/14 12:0 a.m.2 views

LNbits Security Vulnerabilities

LNbits is a Python server open-sourced by LNbits. A security vulnerability exists in versions of LNbits prior to 0.12.6 that stems from the fact that if a payment invoice in Eclair is not cleared within an internal timeout period, it will be treated as a payment failure, even if the payment is...

8.1CVSS6.7AI score0.00602EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/05/03 2:29 a.m.4 views

SUSE CVE-2023-0341

A stack buffer overflow exists in the ecglob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack and possibly allows remote code execution. editorconfig-core-c v0.12.6 resolved this vulnerability by bound checking all write operations over th...

7.8CVSS8.5AI score0.00965EPSS
Exploits1References4
OSV
OSV
added 2023/01/30 12:0 a.m.1 views

UBUNTU-CVE-2023-0341

A stack buffer overflow exists in the ecglob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack and possibly allows remote code execution. editorconfig-core-c v0.12.6 resolved this vulnerability by bound checking all write operations over th...

7.8CVSS6.3AI score0.00965EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2022/03/21 11:15 a.m.5 views

CVE-2022-0415

Remote Command Execution in uploading repository file in GitHub repository gogs/gogs prior to 0.12.6...

9.9CVSS7.8AI score0.65237EPSS
Exploits1References4
Rows per page
Query Builder