Lucene search
+L

15 matches found

GithubExploit
GithubExploit
added 2026/05/19 4:26 p.m.308 views

Exploit for CVE-2026-45185

CVE-2026-45185 Nuclei Template Validation Lab This repository...

9.8CVSS6.1AI score0.01225EPSS
Exploits2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-3591

Malware in sbrugna...

9.8CVSS9.4AI score0.01744EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-1125

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00949EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.9 views

The vulnerability of the close_notify() function in the Apache MINA network Java framework allows a attacker to gain unauthorized access to protected information.

The vulnerability of the closenotify function in the Apache MINA network-oriented Java framework is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

7.8CVSS6.8AI score0.02201EPSS
Exploits0References5Affected Software7
NVD
NVD
added 2024/04/19 4:15 p.m.13 views

CVE-2024-32650

Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...

7.5CVSS7.3AI score0.00949EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/04/19 4:15 p.m.22 views

CVE-2024-32650

Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...

7.5CVSS5.9AI score0.00949EPSS
Exploits0References2
OSV
OSV
added 2024/04/19 4:15 p.m.6 views

UBUNTU-CVE-2024-32650

Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...

7.5CVSS5.8AI score0.00949EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/04/19 4:5 p.m.63 views

CVE-2024-32650

Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...

7.5CVSS7.3AI score0.00949EPSS
Exploits0
CVE
CVE
added 2024/04/19 4:5 p.m.301 views

CVE-2024-32650

CVE-2024-32650 affects rustls:complete_io in a blocking rustls server can enter an infinite loop if a client sends close_notify right after client_hello, leading to a denial of service. Fixes exist in rustls releases 0.23.5, 0.22.4, and 0.21.11. Remediation is to upgrade to one of these versions ...

7.5CVSS6.4AI score0.00949EPSS
Exploits0References4
OSV
OSV
added 2024/04/19 12:0 p.m.21 views

RUSTSEC-2024-0336 `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input

If a closenotify alert is received during a handshake, completeio does not terminate. Callers which do not call completeio are not affected. rustls-tokio and rustls-ffi do not call completeio and are not affected. rustls::Stream and rustls::StreamOwned types use completeio and are affected...

7.5CVSS7.3AI score0.00949EPSS
Exploits0References3
Veracode
Veracode
added 2019/12/05 9:9 a.m.22 views

Denial Of Service (DoS)

Folly is vulnerable to denial of service DoS attack. It is possible because it causes an out-of-bounds read in AsyncSSLSocket due to mishandling of closenotify alerts...

9.8CVSS3.1AI score0.01744EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2019/12/04 5:16 p.m.34 views

CVE-2019-11934

Improper handling of closenotify alerts can result in an out-of-bounds read in AsyncSSLSocket. This issue affects folly prior to v2019.11.04.00...

9.8CVSS9.3AI score0.01744EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/12/04 4:25 p.m.44 views

CVE-2019-11934

Improper handling of closenotify alerts can result in an out-of-bounds read in AsyncSSLSocket. This issue affects folly prior to v2019.11.04.00...

9.4AI score0.01744EPSS
Exploits0References2
CVE
CVE
added 2019/12/04 4:25 p.m.71 views

CVE-2019-11934

The CVE concerns the Folly library’s AsyncSSLSocket. The issue is an improper handling of close_notify alerts that can cause an out-of-bounds read, affecting Folly prior to v2019.11.04.00. Reported as a Denial of Service risk due to the out-of-bounds read, with Red Hat/Veracode descriptions align...

9.8CVSS9.3AI score0.01744EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2019/04/15 1:36 a.m.23 views

Information Disclosure

apache MINA is vulnerable to information disclosure. closenotify SSL/TLS messages are not handled properly and does not lead to a connection closure. This causes the server to keep the socket open, allowing the client to potentially receive clear-text messages that should have been encrypted...

7.5CVSS7.2AI score0.02201EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder