Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Github Security Blog
Github Security Blogadded 2026/06/16 11:1 p.m.10 views

n8n: Denial of Service via ZIP decompression in webhook workflow

Impact The Compression node's Decompress operation expanded attacker-controlled archives into memory without enforcing limits on decompressed output size. An unauthenticated attacker could send a small compressed archive to a public webhook workflow using this node, causing the n8n process to...

7.5CVSS5.4AI score0.00375EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2025/01/10 10:9 a.m.9 views

CLSA-2025-1736503760 unbound: Fix of CVE-2024-8508

CVE-2024-8508: Limit number of name compression calculations per packet to prevent CPU lock and potential denial of service...

5.3CVSS6.7AI score0.00806EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 3:53 a.m.3 views

SUSE CVE-2020-25866

In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed not uncompressed messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rejecting ZIP bombs...

4.3CVSS7.7AI score0.03891EPSS
Exploits1References6
Rows per page
Query Builder