Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : nodejs:16 (AXSA:2023-6226:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6226:01 advisory. c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 c-ares: Buffer Underwrite in aresinetnetpton CVE-2023-31130 c-ares: Insufficient...

7.5CVSS8.3AI score0.01577EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : nodejs:12 (AXSA:2021-1495:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1495:01 advisory. nodejs-mixin-deep: prototype pollution in function mixin-deep CVE-2019-10746 nodejs-set-value: prototype pollution in function set-value...

9.8CVSS7AI score0.69062EPSS
Exploits9References11
Tenable Nessus
Tenable Nessus
added 2025/05/05 12:0 a.m.6 views

Ubuntu 24.10 / 25.04 : c-ares vulnerability (USN-7477-1)

The remote Ubuntu 24.10 / 25.04 host has packages installed that are affected by a vulnerability as referenced in the USN-7477-1 advisory. It was discovered that c-ares incorrectly handled re-enqueuing certain queries. A remote attacker could possibly use this issue to cause c-ares to crash,...

8.3CVSS7.2AI score0.00577EPSS
Exploits0References2
OSV
OSV
added 2023/05/25 11:15 p.m.7 views

AZL-26921 CVE-2023-32067 affecting package grpc for versions less than 1.42.0-8

c-ares is an asynchronous resolver library. c-ares is vulnerable to denial of service. If a target resolver sends a query, the attacker forges a malformed UDP packet with a length of 0 and returns them to the target resolver. The target resolver erroneously interprets the 0 length as a graceful...

7.5CVSS6.6AI score0.01577EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/12/24 12:0 a.m.43 views

GLSA-202012-11 : c-ares: Denial of service

The remote host is affected by the vulnerability described in GLSA-202012-11 c-ares: Denial of service It was discovered that c-ares incorrectly handled certain DNS requests. Impact : A remote attacker, able to trigger a DNS request for a host of their choice by an application linked against...

7.5CVSS7.6AI score0.54164EPSS
Exploits0References2
Rows per page
Query Builder