25 matches found
PYSEC-2022-43137
LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp...
PYSEC-2022-43137
LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp...
Input validation
An improper binary stream data handling issue was found in the core module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. Using this bug, an attacker is able to produce a denial of service attack that can eventually shut down the target server...
CVE-2021-25829
An improper binary stream data handling issue was found in the core module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. Using this bug, an attacker is able to produce a denial of service attack that can eventually shut down the target server...
Apache Groovy Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache Groovy. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Closure implementation which accepts and deserializes a Java serialized binary strea...