EUVD-2023-49503

Malicious code in bioql PyPI...

net-imap rubygem vulnerable to possible DoS by memory exhaustion

Summary There is a possibility for denial of service by memory exhaustion when net-imap reads server responses. At any time while the client is connected, a malicious server can send can send a "literal" byte count, which is automatically read by the client's receiver thread. The response reader...

CVE-2024-4629

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. Thi...

CVE-2023-45196

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in...

CVE-2023-45196

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in...

CVE-2023-45196 Adminer and AdminerEvo denial of service via HTTP redirect

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in...

CVE-2023-45196 Adminer and AdminerEvo denial of service via HTTP redirect

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in...

CVE-2023-45196

CVE-2023-45196 affects Adminer and AdminerEvo. An unauthenticated remote attacker can cause a denial of service by connecting to an attacker‑controlled service that answers with HTTP redirects; the impact is constrained by PHP configuration limits. Adminer is no longer supported; the issue was fi...

Linux kernel USB core subsystem 'usb_destroy_configuration' function out-of-bounds write access vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the U.S. The USB core subsystem is one of the USB core subsystems. An out-of-bounds write access vulnerability exists in the 'usbdestroyconfiguration' function of the...