Lucene search
K

16 matches found

Snyk
Snyk
added 2026/01/30 3:54 p.m.7 views

Uncaught Exception

Overview fast-xml-parser is a Validate XML, Parse XML, Build XML without C/C++ based libraries Affected versions of this package are vulnerable to Uncaught Exception in the numeric entity processing when parsing XML containing out-of-range entity code points. An attacker can cause the application...

8.7CVSS6AI score0.00559EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/30 3:14 p.m.4 views

CVE-2026-25128 fast-xml-parser has RangeError DoS Numeric Entities Bug

fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 5.0.9 through 5.3.3, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-rang...

7.5CVSS5.7AI score0.00559EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.2 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50089)

unicode: problematic ignorable code points. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504642; scriptversion"1.2";...

6.7AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/12/13 3:20 p.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: Fixed possible corruption in nfc/llcp bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224 CVE-2024-50089:...

7.8CVSS8.6AI score0.00809EPSS
Exploits1References118
NVD
NVD
added 2024/11/05 5:15 p.m.8 views

CVE-2024-50089

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0
Cvelist
Cvelist
added 2024/11/05 5:4 p.m.19 views

CVE-2024-50089

...

Exploits0
Veracode
Veracode
added 2019/12/02 6:9 a.m.12 views

Denial Of Service (DoS)

github.com/tdewolff/parse is vulnerable to denial of service. An infinite loop on unicode code points during re-parsing after parse error results in a denial of service condition...

3.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/12/02 12:0 a.m.51 views

CentOS 7 : ntp (CESA-2015:2231)

Updated ntp packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.5CVSS6.7AI score0.06135EPSS
Exploits0References9
Cent OS
Cent OS
added 2015/11/30 7:45 p.m.123 views

ntp, ntpdate, sntp security update

CentOS Errata and Security Advisory CESA-2015:2231 Updated ntp packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common...

7.5CVSS6.9AI score0.06135EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/11/20 12:0 a.m.60 views

RHEL 7 : ntp (RHSA-2015:2231)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:2231 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another referenced time source. These packages include the ntpd...

7.5CVSS6.9AI score0.06135EPSS
Exploits0References20
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.34 views

Mandriva Update for pcre MDVSA-2008:053 (pcre)

Check for the Version of pcre OpenVAS Vulnerability Test Mandriva Update for pcre MDVSA-2008:053 pcre Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.5CVSS0.05914EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.26 views

FreeBSD Ports: pcre

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS9.4AI score0.05914EPSS
Exploits2References3
NVD
NVD
added 2008/02/18 11:0 p.m.20 views

CVE-2008-0674

Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255...

7.5CVSS7.6AI score0.05914EPSS
Exploits2References54
CVE
CVE
added 2008/02/18 10:0 p.m.100 views

CVE-2008-0674

CVE-2008-0674 is a buffer overflow in the PCRE library prior to 7.6 that permits remote attackers to execute arbitrary code via a regular expression containing a character class with many Unicode code points above 255. The CVE is listed across multiple vulnerability feeds (e.g., OpenVAS/Nessus en...

7.5CVSS9.8AI score0.05914EPSS
Exploits2References54Affected Software1
Cvelist
Cvelist
added 2008/02/18 10:0 p.m.27 views

CVE-2008-0674

Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255...

9.8AI score0.05914EPSS
Exploits2References54
Debian CVE
Debian CVE
added 2008/02/18 10:0 p.m.32 views

CVE-2008-0674

Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255...

7.5CVSS7.4AI score0.05914EPSS
Exploits2
Rows per page
Query Builder