Lucene search
K

99 matches found

Snyk
Snyk
added 2026/07/03 10:18 p.m.4 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the CODEOWNERS pattern matching process. An attacker can cause excessive resource consumption by submitting specially crafted patterns, potentially leading to service unavailability. Remediation Upgrade...

7.5CVSS6AI score0.00331EPSS
Exploits0References2
Snyk
Snyk
added 2026/07/03 10:18 p.m.4 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the CODEOWNERS pattern matching process. An attacker can cause excessive resource consumption by submitting specially crafted patterns, potentially leading to service unavailability. Remediation Upgrade...

7.5CVSS6AI score0.00331EPSS
Exploits0References2
NVD
NVD
added 2026/07/03 9:17 p.m.8 views

CVE-2026-58421

Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...

7.5CVSS0.00331EPSS
Exploits0References4
CVE
CVE
added 2026/07/03 8:54 p.m.20 views

CVE-2026-58421

CVE-2026-58421 affects Go-Gitea components (CODEOWNERS pattern matching) and is reported as an unauthenticated ReDoS that can cause denial of service through specially crafted patterns. The SNYK entries cite vulnerable paths in go-gitea/gitea: the issues model and issues/services with a suggested...

7.5CVSS5.9AI score0.00331EPSS
Exploits0References4
OSV
OSV
added 2026/07/03 8:54 p.m.4 views

CVE-2026-58421 Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service

Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...

7.5CVSS5.9AI score0.00331EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/03 8:54 p.m.6 views

CVE-2026-58421

Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...

5.9AI score0.00331EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/03 8:54 p.m.37 views

CVE-2026-58421 Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service

Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...

0.00331EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/03 12:0 a.m.15 views

PT-2026-55654

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An unauthenticated Regular Expression Denial of Service ReDoS exists due to improper pattern matching within the CODEOWNERS file processing. This allows a remote...

7.5CVSS6AI score0.00331EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/01/09 8:57 a.m.9 views

CVE-2023-4812

An issue has been discovered in GitLab EE affecting all versions starting from 15.3 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2. The required CODEOWNERS approval could be bypassed by adding changes to a previously approved merge...

7.6CVSS6.3AI score0.0051EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-26265

Malware in sbrugna...

5.3CVSS5.3AI score0.00594EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-5608

Malware in sbrugna...

5.7CVSS5.5AI score0.00789EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.24 views

EUVD-2023-58949

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00643EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-54656

Malicious code in bioql PyPI...

7.6CVSS6.4AI score0.0051EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2024-16205

Malicious code in bioql PyPI...

7.7CVSS7.5AI score0.00455EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2023-34054

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00473EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-6736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions...

6.5CVSS6.3AI score0.00643EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-2576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all...

4.3CVSS5AI score0.00473EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-0199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An...

8CVSS7.5AI score0.00706EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:58 a.m.8 views

CVE-2023-6736

An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for an attacker to cause a client-side denial of service using malicious crafted content...

6.5CVSS6.4AI score0.00643EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:52 a.m.7 views

CVE-2023-2576

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. This allowed a developer to remove the CODEOWNERS rules and merge to a protected branch...

4.3CVSS6.2AI score0.00473EPSS
Exploits0References1
Rows per page
Query Builder