Lucene search
+L

2155 matches found

Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.38 views

PT-2026-46315

Name of the Vulnerable Software and Affected Versions netty incubator codec-ohttp versions prior to 0.0.22.Final Description The codec-ohttp implementation of draft-ietf-ohai-chunked-ohttp fails to verify the receipt of a cryptographically-signed final chunk before the outer HTTP body terminates...

8.7CVSS5.5AI score0.00167EPSS
Exploits0References9
OSV
OSV
added 2026/06/03 7:0 a.m.5 views

OPENSUSE-SU-2026:20895-1 Security update for libsoup2

This update for libsoup2 fixes the following issues: - CVE-2026-1801: Use CRLF as line boundary when parsing chunk encoding data bsc1257649...

6.5CVSS5.4AI score0.00376EPSS
Exploits0References2
OSV
OSV
added 2026/06/02 9:7 a.m.9 views

CLSA-2026-1780391238 Fix CVE(s): CVE-2026-8376

SECURITY UPDATE: heap buffer overflow in the regexp compiler 32-bit - debian/patches/CVE-2026-8376.patch: guard against an SSizet overflow when sizing the joined fixed-substring buffer in Perlstudychunk in regcomp.c; backported from upstream commit 5e7f119eb2bb1181be908701f22bf7068e722f1c. -...

9.8CVSS6AI score0.00398EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/06/02 1:38 a.m.15 views

SUSE CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

7.5CVSS5.7AI score0.00327EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/06/01 1:29 p.m.13 views

CVE-2026-45352

A flaw was found in cpp-httplib, a C++ HTTP/HTTPS library. A remote attacker could exploit this vulnerability by sending a specially crafted HTTP request that includes a negative chunk-size in the chunked Transfer-Encoding. This incorrect parsing leads to unbounded memory allocation, causing the...

7.5CVSS5.8AI score0.00327EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2026/06/01 5:40 a.m.118 views

Exploit for Integer Overflow to Buffer Overflow in Perl

CVE-2026-8376-Perl-Heap-Buffer-Overflow-PoC-Exploit Perl vers...

9.8CVSS6AI score0.00398EPSS
Exploits1
OSV
OSV
added 2026/06/01 12:0 a.m.12 views

PUB-A-479203197

In RtcpChunk::decodeRtcpChunk, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

3.5CVSS6.2AI score0.00173EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/29 9:15 p.m.12 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to improper validation of the chunk-size field in chunked Transfer-Encoding within the ChunkedDecoder::readpayload function. An attacker can cause unbounded memory allocation and...

7.5CVSS5.8AI score0.00327EPSS
Exploits1References2
NVD
NVD
added 2026/05/29 8:16 p.m.24 views

CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

7.5CVSS0.00327EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 8:16 p.m.11 views

DEBIAN-CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

7.5CVSS5.7AI score0.00327EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 8:16 p.m.9 views

UBUNTU-CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

7.5CVSS5.7AI score0.00327EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/05/29 7:14 p.m.18 views

CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

7.5CVSS5.7AI score0.00327EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/05/29 7:14 p.m.12 views

CVE-2026-45352

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

5.3CVSS5.7AI score0.00327EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/29 7:14 p.m.9 views

CVE-2026-45352 cpp-httplib DoS: Negative chunk-size in chunked Transfer-Encoding

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

5.3CVSS5.7AI score0.00327EPSS
Exploits1References1
CVE
CVE
added 2026/05/29 7:14 p.m.37 views

CVE-2026-45352

The CVE-2026-45352 issue affects cpp-httplib (header-only HTTP/HTTPS library). Before version 0.43.4, the ChunkedDecoder::read_payload routine parses the chunk-size in chunked Transfer-Encoding with std::strtoul(), which can silently accept a minus sign. This allows negative chunk sizes (e.g., "-...

7.5CVSS5.7AI score0.00327EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/05/29 7:14 p.m.46 views

CVE-2026-45352 cpp-httplib DoS: Negative chunk-size in chunked Transfer-Encoding

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

5.3CVSS0.00327EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 7:14 p.m.2 views

CVE-2026-45352 cpp-httplib DoS: Negative chunk-size in chunked Transfer-Encoding

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::readpayload function in cpp-httplib httplib.h parses the chunk-size field o...

5.3CVSS7AI score0.00327EPSS
Exploits1References3
EUVD
EUVD
added 2026/05/29 5:52 p.m.18 views

EUVD-2026-30842

ExifReader is vulnerable to denial of service via unbounded decompression of image metadata...

6.9CVSS5.8AI score0.00464EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.15 views

cpp-httplib 安全漏洞

cpp-httplib is a C++ library developed by Yhirose, which includes HTTP/HTTPS server and client components. Versions of cpp-httplib prior to 0.43.4 contained security vulnerabilities. These vulnerabilities stemmed from negative chunk sizes in chunked transmission encoding, leading to unbounded...

7.5CVSS5.8AI score0.00327EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/05/28 3:55 a.m.10 views

SUSE CVE-2026-45934

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation I have been observing a number of systems aborting at insertdevextents in btrfscreatependingblockgroups. The following is a sample stack trace of such an abo...

5.8AI score0.00121EPSS
Exploits0References3
Rows per page
Query Builder