Lucene search
K

442 matches found

RedHat Linux
RedHat Linux
added 2026/02/16 9:33 p.m.11 views

urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion

A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain...

8.9CVSS5.7AI score0.00633EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/02/04 12:25 a.m.5 views

SUSE CVE-2026-22780

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

4.4CVSS5.5AI score0.00179EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/02 8:52 p.m.3 views

CVE-2026-22780 Rizin has a heap overflow on mach0_chained_fixups.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

4.4CVSS5.5AI score0.00179EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/02 8:52 p.m.29 views

CVE-2026-22780 Rizin has a heap overflow on mach0_chained_fixups.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

4.4CVSS0.00179EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/01/26 2:19 p.m.4 views

urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion

A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain...

8.9CVSS5.7AI score0.00633EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/01/09 11:14 a.m.9 views

CVE-2016-10892

The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 1:55 p.m.7 views

CVE-2026-21876 OWASP CRS has multipart bypass using multiple content-type parts

The OWASP core rule set CRS is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 4.22.0 and 3.3.8, the current rule 922110 has a bug when processing multipart requests with multiple parts. When the first rule in a chain iterates over a...

9.3CVSS6.5AI score0.13124EPSS
Exploits4References5
Cvelist
Cvelist
added 2026/01/08 1:43 p.m.22 views

CVE-2025-8306 Improper Access Control in Asseco Infomedica Plus

Asseco InfoMedica is a comprehensive solution used to manage both administrative and medical tasks in the healthcare sector. A low privileged user is able to obtain encoded passwords of all other accounts including main administrator due to lack of granularity in access control. Chained...

5.1CVSS0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/22 9:35 p.m.25 views

CVE-2023-53979 MyBB 1.8.32 Authenticated Remote Code Execution via Chained Vulnerabilities

MyBB 1.8.32 contains a chained vulnerability that allows authenticated administrators to bypass avatar upload restrictions and execute arbitrary code. Attackers can modify upload path settings, upload a malicious PHP-embedded image file, and execute commands through the language configuration...

8.8CVSS0.00703EPSS
Exploits1References4
OSV
OSV
added 2025/12/16 3:39 p.m.4 views

CVE-2025-68317 io_uring/zctx: check chained notif contexts

In the Linux kernel, the following vulnerability has been resolved: iouring/zctx: check chained notif contexts Send zc only links ubufinfo for requests coming from the same context. There are some ambiguous syz reports, so let's check the assumption on notification completion...

6.4AI score0.00169EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly checking the chained notification context, which could lead to ambiguity in notification completion...

6.1AI score0.00169EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/06 12:0 a.m.5 views

PT-2025-49392

New HTB video up - Editor machine Chained CVE-2024-24893 for the foothold and CVE-2024-32019 to get root. https://t.co/z1zRLuMttt commands: https://t.co/zZEPDE8xg0 HackTheBox OSCP pentesting editor https://t.co/opAGaJ4Evv...

8.8CVSS6.9AI score0.01165EPSS
Exploits15References1
Microsoft CVE
Microsoft CVE
added 2025/11/19 1:1 a.m.7 views

Bluetooth: When HCI work queue is drained, only queue chained work

...

5.5CVSS7AI score0.00151EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-0005

Malware in sbrugna...

7.5CVSS6.1AI score0.01488EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-11602

Malware in sbrugna...

5.4CVSS5.4AI score0.00604EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-28238

Malware in sbrugna...

6.1CVSS6.3AI score0.01607EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-6418

Malware in sbrugna...

9.8CVSS9.1AI score0.02686EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-1886

Malware in sbrugna...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-14082

Malware in sbrugna...

7.8CVSS4.9AI score0.00394EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-51577

Malicious code in bioql PyPI...

5.5CVSS5.3AI score0.00642EPSS
Exploits1References4
Rows per page
Query Builder