Lucene search
K

481 matches found

CVE
CVE
added 2 days ago8 views

CVE-2026-57082

The CVE-2026-57082 issue affects Net::BitTorrent for Perl (up to version 2.0.1). The MSE handshake derives its 160-bit Diffie-Hellman private key from Perl’s rand(), a non-cryptographic PRNG seeded once per process, via KeyExchange.pm. As a result, the shared secret and the RC4 keys (SHA-1("keyA"...

5.9CVSS5.8AI score0.00152EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-57082

Net::BitTorrent versions through 2.0.1 for Perl generate the MSE Diffie-Hellman private key with a non-cryptographic PRNG. The MSE Message Stream Encryption handshake derives its 160-bit Diffie-Hellman private key from Perl's rand, a non-cryptographic drand48-class generator seeded once per...

5.9CVSS5.8AI score0.00152EPSS
Exploits0References2
CVE
CVE
added 2 days ago9 views

CVE-2026-57081

CVE-2026-57081 affects Net::BitTorrent for Perl up to version 2.0.1. The root cause is unbounded recursion in the bdecode decoder: each nested list/dictionary level causes a recursive call that copies the remaining input buffer, producing O(N^2) memory growth for deeply nested inputs. In practice...

7.5CVSS6AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-57080 Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

0.00263EPSS
Exploits0References1
CVE
CVE
added 2 days ago6 views

CVE-2026-57080

Net::BitTorrent (Perl) up to version 2.0.1 is affected by a memory-exhaustion vulnerability caused by an unbounded 4-byte peer-wire message-length prefix in _process_messages. The decoder waits for a full message before processing, allowing the input buffer to grow without limit when a peer annou...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-40289

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-57080

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in processmessages trusts the 4-byte length prefix sent by a connected peer with no upper bound, while receivedata appends every inbound byte to th...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References2
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-57079 Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata

Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitTorrent validates file path components only on the .torrent-file ingest path. The peer and magnet metadata path onmetadatareceived, reached from the BEP...

0.00282EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Wireshark

An infinite loop in the BitTorrent DHT dissector in Wireshark versions 3.6.0, 3.4.0, and 3.4.10 allows for denial of service through packet injection or malicious capture files...

7.5CVSS7.1AI score0.03879EPSS
Exploits1References1
Fedora
Fedora
added 2026/06/05 4:27 a.m.11 views

[SECURITY] Fedora 44 Update: transmission-4.1.2-1.fc44

Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...

5.3CVSS5.8AI score0.00305EPSS
Exploits0
Fedora
Fedora
added 2026/06/05 4:10 a.m.11 views

[SECURITY] Fedora 43 Update: transmission-4.1.2-1.fc43

Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...

5.3CVSS5.8AI score0.00305EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:27 a.m.12 views

CVE-2008-7166

Buffer overflow in the web interface in BitTorrent 6.0.1 build 7859 and earlier, and uTorrent 1.7.6 build 7859 and earlier, allows remote attackers to cause a denial of service memory consumption and crash via a crafted Range header. NOTE: this is probably a different vulnerability than...

5CVSS7AI score0.08892EPSS
Exploits3References1
Malwarebytes
Malwarebytes
added 2025/12/23 12:28 p.m.6 views

Hacktivists claim near-total Spotify music scrape

Hacktivist group Anna’s Archive claims to have scraped almost all of Spotify’s catalog and is now seeding it via BitTorrent, effectively turning a streaming platform into a roughly 300 TB pirate “preservation archive.” On its blog, the group states: “A while ago, we discovered a way to scrape...

7.2AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.20 views

EUVD-2020-0848

Malware in sbrugna...

7.5CVSS7.6AI score0.01637EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-3227

Malware in sbrugna...

2.6CVSS6.4AI score0.02087EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-0374

Malware in sbrugna...

5CVSS6.1AI score0.08892EPSS
Exploits2References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-2934

Malware in sbrugna...

9.3CVSS6.4AI score0.03651EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-8352

Malware in sbrugna...

6.8CVSS6.4AI score0.0241EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0961

Malware in sbrugna...

5.3CVSS5.5AI score0.01185EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-8346

Malware in sbrugna...

7.5CVSS6.4AI score0.05125EPSS
Exploits1References4
Rows per page
Query Builder