CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

RedHat Linux•added 2025/06/03 12:43 a.m.•4 views

cmark-gfm: Quadratic complexity bugs may lead to a denial of service

A flaw was found in CommonMarker. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service...

7.5CVSS5.7AI score0.00319EPSS

Exploits1References5

Tenable Nessus•added 2025/03/05 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-22051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attacke...

9.8CVSS8.4AI score0.12055EPSS

Exploits0References3

OSSF Malicious Packages•added 2024/06/25 1:50 p.m.•3 views

Malicious code in commonmarker_pluggable (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0References1

Veracode•added 2024/01/05 8:1 a.m.•17 views

Integer Overflow

commonmarker is vulnerable to Integer Overflow . This vulnerability is due to unauthenticated remote access when parsing tables who's marker rows contain more than UINT16MAX columns. This allows the remote attackers to cause heap memory corruption which ranges from Information Leak to Arbitrary...

9.8CVSS7.4AI score0.12055EPSS

Exploits0References5Affected Software2

OSV•added 2024/01/04 9:30 p.m.•6 views

GHSA-C2V4-CHX5-VFF6 Duplicate Advisory: Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fmx4-26r3-wxpf. This link is maintained to preserve external references. Original Description CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result...

9.8CVSS9.7AI score0.12055EPSS

Exploits0References6

Github Security Blog•added 2024/01/04 9:30 p.m.•17 views

Duplicate Advisory: Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption

9.8CVSS7.9AI score0.12055EPSS

Exploits0References7Affected Software1

NVD•added 2024/01/04 9:15 p.m.•22 views

CVE-2024-22051

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker...

9.8CVSS9.8AI score0.12055EPSS

Exploits0References5

OSV•added 2024/01/04 9:15 p.m.•1 views

DEBIAN-CVE-2024-22051

9.8CVSS8.7AI score0.12055EPSS

Exploits0References1

OSV•added 2024/01/04 9:15 p.m.•16 views

CVE-2024-22051

9.8CVSS8.8AI score

Exploits0References5

Prion•added 2024/01/04 9:15 p.m.•13 views

Integer overflow

7.5CVSS7.8AI score0.12055EPSS

Exploits0References5Affected Software2

UbuntuCve•added 2024/01/04 9:15 p.m.•22 views

CVE-2024-22051

9.8CVSS7.3AI score0.12055EPSS

Exploits0References8

OSV•added 2024/01/04 9:15 p.m.•2 views

UBUNTU-CVE-2024-22051

9.8CVSS6.1AI score0.12055EPSS

Exploits0References8

Vulnrichment•added 2024/01/04 8:27 p.m.•4 views

CVE-2024-22051 CommonMarker Integer Overflow Vulnerability

8.7AI score0.12055EPSS

Exploits0References5

CVE•added 2024/01/04 8:27 p.m.•69 views

CVE-2024-22051

CommonMarker (cmark-gfm) before version 0.23.4 is vulnerable to an integer overflow in table row parsing that can cause heap memory corruption, potentially enabling unauthenticated remote attackers to leak information or execute code when parsing tables with more than UINT16_MAX columns. Affected...

9.8CVSS8.7AI score0.12055EPSS

Exploits0References5Affected Software2

Cvelist•added 2024/01/04 8:27 p.m.•26 views

CVE-2024-22051 CommonMarker Integer Overflow Vulnerability

10AI score0.12055EPSS

Exploits0References5

CNNVD•added 2024/01/04 12:0 a.m.•3 views

Commonmarker Input Validation Error Vulnerability

Commonmarker is a Ruby wrapper for comrak CommonMark parser by the individual developer Garen Torikian. An input validation error vulnerability exists in versions of CommonMarker prior to 0.23.4, which stems from an integer overflow vulnerability. An attacker could exploit this vulnerability to...

9.8CVSS7.2AI score0.12055EPSS

Exploits0References8

OSV•added 2023/08/08 5:12 p.m.•38 views

GHSA-7VH7-FW88-WJ87 Several quadratic complexity bugs may lead to denial of service in Commonmarker

Impact Several quadratic complexity bugs in commonmarker's underlying cmark-gfm library may lead to unbounded resource exhaustion and subsequent denial of service. The following vulnerabilities were addressed: CVE-2023-37463 For more information, consult the release notes for version 0.29.0.gfm.1...

7.1AI score

Exploits0References5

Github Security Blog•added 2023/08/08 5:12 p.m.•39 views

Several quadratic complexity bugs may lead to denial of service in Commonmarker

7.5CVSS7AI score0.00221EPSS

Exploits1References5Affected Software1

RedhatCVE•added 2023/05/26 5:10 p.m.•23 views

CVE-2023-26485

A flaw was found in CommonMarker. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service...

7.5CVSS6.8AI score0.00154EPSS

Exploits1References4

RedhatCVE•added 2023/05/26 5:10 p.m.•106 views

CVE-2023-24824

A flaw was found in CommonMarker. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service...

7.5CVSS6.8AI score0.00319EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by