19 matches found
kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel
A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...
linux-copy-fail-exploit
CVE-2026-31431 Copy Fail - LPE Exploit PoC !Pythonhttps:...
PT-2026-36686
Pre-show: Two thirds of your hosts are sick 🤧 Follow-up: Backblaze & cloud backups Carbon Copy Cloner & Backblaze via Barry Rubenstein Support document Maestral Arq’s approach via Daniel Luz Neo-ing… other things Mythos What makes this different via William Moran GPT-5.5 is equivalent? cURL...
MiracleLinux 8 : bind-9.11.36-3.el8 (AXSA:2022-3460:02)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3460:02 advisory. bind: Lame cache can be abused to severely degrade resolver performance CVE-2021-25219 Tenable has extracted the preceding description block directly from th...
CVE-2026-1002 Eclipse Vert.x Web static handler file access denial
The Vert.x Web static handler component cache can be manipulated to deny the access to static files served by the handler using specifically crafted request URI. The issue comes from an improper implementation of the C. rule of section 5.2.4 of RFC3986 and is fixed in Vert.x Core component used b...
CVE-2025-30188
Malicious or unintentional API requests can be used to add significant amount of data to caches. Caches may evict information that is required to operate the web frontend, which leads to unavailability of the component. Please deploy the provided updates and patch releases. No publicly available...
vLLM vulnerable to Denial of Service by abusing xgrammar cache
Impact This report is to highlight a vulnerability in XGrammar, a library used by the structured output feature in vLLM. The XGrammar advisory is here: https://github.com/mlc-ai/xgrammar/security/advisories/GHSA-389x-67px-mjg3 The xgrammar library is the default backend used by vLLM to support...
Design/Logic Flaw
Requests to cache an image and return its metadata could be abused to include SQL queries that would be executed unchecked. Exploiting this vulnerability requires at least access to adjacent networks of the imageconverter service, which is not exposed to public networks by default. Arbitrary SQL...
PT-2023-20646 · Unknown · Imageconverter Service
Name of the Vulnerable Software and Affected Versions: imageconverter service affected versions not specified Description: The issue allows requests to cache an image to be abused, including SQL queries that would be executed unchecked. Exploiting this requires at least access to adjacent network...
PT-2023-20645 · Unknown · Imageconverter Service
Name of the Vulnerable Software and Affected Versions: imageconverter service affected versions not specified Description: The issue allows requests to cache an image and return its metadata to be abused, including SQL queries that would be executed unchecked. Exploiting this requires at least...
golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests
A flaw was found in the net/http library of the golang package. This flaw allows an attacker to cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache...
Cold Hard Cache — Bypassing RPC Interface Security with Cache Abuse
...
CVE-2022-1765 Hot Linked Image Cacher <= 1.16 - Image upload/cache abuse via CSRF
The Hot Linked Image Cacher WordPress plugin through 1.16 is vulnerable to CSRF. This can be used to store / cache images from external domains on the server, which could lead to legal risks due to copyright violations or licensing rules...
WordPress Hot Linked Image Cacher plugin <= 1.16 - Image upload/cache abuse via Cross-Site Request Forgery (CSRF) vulnerability
Image upload/cache abuse via Cross-Site Request Forgery CSRF vulnerability discovered by Daniel Ruf in WordPress Hot Linked Image Cacher plugin versions = 1.16. Solution Deactivate and delete. This plugin has been closed as of May 16, 2022 and is not available for download. This closure is...
Lame cache can be abused to severely degrade resolver performance
...
CLSA-2021-1637070791 Fix of CVE: CVE-2021-25219
CVE-2021-25219: Fix resolver performance degradation via lame cache abuse...
CLSA-2021-1635957830 Fixed CVE-2021-25219 in bind
CVE-2021-25219: Fix resolver performance degradation via lame cache abuse...
IBM API Connect 输入验证错误漏洞
IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from IBM USA. The product supports creating, running, managing, and securing APIs, microservices, and more. An input validation error vulnerability exists in IBM API Connect, which can be exploited by an...
rubygem-actionpack: Action View DoS
A denial of service flaw was found in the header handling component of Action View. A remote attacker could send strings in specially crafted headers that would be cached indefinitely, which would result in all available system memory eventually being consumed...