Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/04/17 10:41 p.m.0 views

Memory Allocation with Excessive Size Value

Overview Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the endpoints.GetSessionCookie function. An attacker can exhaust system memory resources by sending specially crafted requests containing a large cookie chunk count, resulting in unbounded...

8.7CVSS5.8AI score0.00032EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/17 9:1 p.m.1 views

CVE-2026-40303

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, endpoints.GetSessionCookie parses an attacker-supplied cookie chunk count and calls makestring, count with no upper bound before any token validation occurs. The function is reached on every request t...

7.5CVSS5.8AI score0.00032EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVEadded 2023/02/15 3:56 a.m.1 views

SUSE CVE-2020-15306

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize in IlmImf/ImfMisc.cpp...

5.5CVSS7.5AI score0.00108EPSS
Exploits0References7
Veracode
Veracodeadded 2022/06/23 7:12 a.m.20 views

Denial Of Service (DoS)

OPCFoundation.NetStandard.Opc.Ua is vulnerable to denial of service. The vulnerability exists due to improper configuration of maximum chunk count which allows malicious clients to cause an application crash via a carefully crafted message...

7.5CVSS6.9AI score0.00628EPSS
Exploits0References5Affected Software1
Veracode
Veracodeadded 2022/06/23 4:55 a.m.20 views

Denial Of Service (DoS)

opcfoundation.netstandard.opc.ua is vulnerable to denial of service. The vulnerability exists due to the lack of maximum chunk count check-in requests which allows malicious clients to cause an application crash...

7.5CVSS7.1AI score0.01391EPSS
Exploits0References5Affected Software1
Veracode
Veracodeadded 2022/06/20 7:2 a.m.22 views

Denial Of Service (DoS)

OPCFoundation.NetStandard.Opc.Ua is vulnerable to denial of service. The vulnerability exists due to the lack of maximum chunk count check-in request and response messages, allowing malicious clients or servers to cause a peer to hang with a carefully crafted message sent during secure channel...

7.5CVSS7AI score0.00802EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2020/06/26 1:15 a.m.0 views

DEBIAN-CVE-2020-15306

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize in IlmImf/ImfMisc.cpp...

5.5CVSS7AI score0.00108EPSS
Exploits0References1
OSV
OSVadded 2020/06/26 1:15 a.m.2 views

AZL-45069 CVE-2020-15306 affecting package OpenEXR 2.3.0-6

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize in IlmImf/ImfMisc.cpp...

5.5CVSS7AI score0.00108EPSS
Exploits0References1
Rows per page
Query Builder