Lucene search
K

5517 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.14 views

CVE-2022-35961

OpenZeppelin Contracts is a library for secure smart contract development. The functions ECDSA.recover and ECDSA.tryRecover are vulnerable to a kind of signature malleability due to accepting EIP-2098 compact signatures in addition to the traditional 65 byte signature format. This is only an issu...

7.9CVSS6.7AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2025/12/30 1:15 p.m.13 views

UBUNTU-CVE-2022-50809

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

5.7AI score0.00206EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/30 12:8 p.m.23 views

CVE-2022-50809 xhci: dbc: Fix memory leak in xhci_alloc_dbc()

In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fix memory leak in xhciallocdbc If DbC is already in use, then the allocated memory for the xhcidbc struct doesn't get freed before returning NULL, which leads to a memleak...

0.00206EPSS
Exploits0References4
CVE
CVE
added 2025/12/30 12:8 p.m.14 views

CVE-2022-50809

In CVE-2022-50809, the Linux kernel vuln is a memory-leak in xhci_alloc_dbc() when DbC is already in use, where the xhci_dbc memory may not be freed before returning NULL. Concretely, the issue is triggered during DbC allocation and leads to a memleak as described in the public entries; multiple ...

6AI score0.00206EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.3 views

PT-2025-53927

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the xhci alloc dbc function when Dynamic Backtrace Collection DbC is already in use. Specifically, if DbC is in use, the memory allocated for the xhci dbc struct ...

7.8CVSS6.3AI score0.00462EPSS
Exploits2References894
Hacker One
Hacker One
added 2025/12/22 7:14 p.m.21 views

curl: HAProxy Connection Reuse leads to IP Spoofing and mTLS Context Smuggling

Executive Summary libcurl fails to respect the CURLOPTHAPROXYCLIENTIP configuration when reusing existing connections. Due to a missing check in the connection pooling logic, libcurl indiscriminately reuses a TCP/TLS connection established with a specific identity IP A for subsequent requests...

6.4AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/12/18 7:14 p.m.4 views

ICE Seeks Cyber Upgrade to Better Surveil and Investigate Its Employees

The agency plans to renew a sweeping cybersecurity contract that includes expanded employee monitoring as the government escalates leak investigations and casts internal dissent as a threat...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/16 12:25 a.m.5 views

CVE-2025-66435

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

4.3CVSS7.5AI score0.00289EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/15 6:30 p.m.6 views

EUVD-2025-203396

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

7AI score0.00289EPSS
Exploits1References3
NVD
NVD
added 2025/12/15 5:15 p.m.7 views

CVE-2025-66435

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

4.3CVSS0.00289EPSS
Exploits1References2
CVE
CVE
added 2025/12/15 12:0 a.m.12 views

CVE-2025-66435

CVE-2025-66435 affects Frappe ERPNext up to version 15.89.0. An SSTI flaw in get_contract_template renders attacker-controlled Jinja2 templates (contract_terms) via frappe.render_template() using a user-supplied context (doc). Although Frappe uses a SandboxedEnvironment, dangerous globals such as...

4.3CVSS7.1AI score0.00289EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/12/15 12:0 a.m.26 views

CVE-2025-66435

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

0.00289EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.4 views

ERPNext 安全漏洞

ERPNext is an open source enterprise resource planning solution from ERPNext India. A security vulnerability exists in ERPNext 15.89.0 and earlier versions, which stems from the presence of server-side template injection in the getcontracttemplate method, which could lead to server-side code...

4.3CVSS7.4AI score0.00289EPSS
Exploits1References3
OSV
OSV
added 2025/12/15 12:0 a.m.3 views

CVE-2025-66435

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

4.3CVSS7.3AI score0.00289EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/15 12:0 a.m.3 views

CVE-2025-66435

An SSTI Server-Side Template Injection vulnerability exists in the getcontracttemplate method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contractterms using frappe.rendertemplate with a user-supplied context doc. Although Frappe uses a custom...

7.1AI score0.00289EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.7 views

PT-2025-51253

An SSTI Server-Side Template Injection vulnerability exists in the get contract template method of Frappe ERPNext through 15.89.0. The function renders attacker-controlled Jinja2 templates contract terms using frappe.render template with a user-supplied context doc. Although Frappe uses a custom...

7.5AI score0.00289EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2025/12/13 3:7 p.m.168 views

glider_StakedUSDeV2

StakedUSDeV2 Uninitialized Role Variable PoC Vulnerability...

7.9AI score
Exploits0
Veracode
Veracode
added 2025/12/13 5:34 a.m.5 views

Remote Code Execution (RCE)

CSLA .NET is vulnerable to remote code execution RCE. The vulnerability is due to the use of the obsolete NetDataContractSerializer NDCS in WcfProxy, which allows an attacker to execute arbitrary code during the deserialization process...

9.8CVSS6.7AI score0.00575EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/12/09 3:18 a.m.7 views

CVE-2025-66631 CSLA .NET is vulnerable to Remote Code Execution via WcfProxy

CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...

9.2CVSS8AI score0.00575EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49778

CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...

9.2CVSS8AI score0.00575EPSS
Exploits0References3
Rows per page
Query Builder