Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Github Security Blog
Github Security Blogadded 2026/05/29 7:8 p.m.9 views

astral-tokio-tar has a PAX Header Desynchronization issue

Impact Versions of astral-tokio-tar prior to 0.6.2 contain a PAX header interpretation bug that allows manipulated entries to be made selectively visible or invisible during extraction with astral-tokio-tar versus other tar implementations. An attacker could use this differential to smuggle...

5.8AI score
Exploits0References3Affected Software1
RustSec
RustSecadded 2026/05/18 12:0 p.m.9 views

PAX Header Desynchronization in astral-tokio-tar

Versions of astral-tokio-tar prior to 0.6.2 contain a PAX header interpretation bug that allows manipulated entries to be made selectively visible or invisible during extraction with astral-tokio-tar versus other tar implementations. An attacker could use this differential to smuggle unexpected...

5.8AI score
Exploits0Affected Software1
CNNVD
CNNVDadded 2026/01/16 12:0 a.m.2 views

pyasn1 security vulnerabilities

pyasn1 is a Python library open-sourced by the pyasn1 maintenance organization. Versions of pyasn1 prior to 0.6.2 contained security vulnerabilities; these vulnerabilities stemmed from memory exhaustion issues when processing malformed RELATIVE-OID fields, which could lead to denial-of-service...

7.5CVSS6.7AI score0.00032EPSS
Exploits0References4
OSV
OSVadded 2020/01/10 6:15 a.m.0 views

DEBIAN-CVE-2014-5011

DOMPDF before 0.6.2 allows Information Disclosure...

6.5CVSS7.6AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/01/10 12:0 a.m.3 views

PT-2020-7696 · Dompdf +2 · Dompdf +2

Name of the Vulnerable Software and Affected Versions: DOMPDF versions prior to 0.6.2 Description: The issue allows for a denial of service. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited...

9.8CVSS7.2AI score0.25607EPSS
Exploits8References23
OSV
OSVadded 2019/08/26 6:15 p.m.0 views

UBUNTU-CVE-2018-20989

An issue was discovered in the untrusted crate before 0.6.2 for Rust. Error handling can trigger an integer underflow and panic...

7.5CVSS5.8AI score0.00334EPSS
Exploits0References3
PyPA
PyPAadded 2018/02/18 3:29 a.m.4 views

PYSEC-2018-68

An issue was discovered in Project Jupyter JupyterHub OAuthenticator 0.6.x before 0.6.2 and 0.7.x before 0.7.3. When using JupyterHub with GitLab group whitelisting for access control, group membership was not checked correctly, allowing members not in the whitelisted groups to create accounts on...

8.8CVSS7.1AI score0.00651EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2009/06/25 11:14 p.m.1 views

CVE-2009-2215

Multiple cross-site scripting XSS vulnerabilities in URD before 0.6.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the fatalerror page and unspecified other components...

4.3CVSS5.5AI score0.00263EPSS
Exploits0References3
NVD
NVDadded 2008/08/10 9:41 p.m.18 views

CVE-2008-3576

Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted string. NOTE: some of these details are obtained from third party information...

10CVSS8AI score0.10352EPSS
Exploits0References9
Rows per page
Query Builder