Lucene search
+L

14 matches found

github
github
added 2026/03/07 2:39 a.m.9 views

Soroban: Muxed address<->ScVal conversions may break after a conversion failure

Summary Soroban host ensures that MuxedAddress objects can't be used as storage keys in order to proactively prevent the contract logic bugs. However, due to a bug in Soroban host implementation, a failure in Val-ScVal conversion during the storage key computation will have the flag indicating th...

5.7AI score
Exploits0References2Affected Software1
osv
osv
added 2026/03/07 2:39 a.m.5 views

GHSA-PM4J-7R4Q-CCG8 Soroban: Muxed address<->ScVal conversions may break after a conversion failure

Summary Soroban host ensures that MuxedAddress objects can't be used as storage keys in order to proactively prevent the contract logic bugs. However, due to a bug in Soroban host implementation, a failure in Val-ScVal conversion during the storage key computation will have the flag indicating th...

6.3CVSS5.7AI score
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7422

Malware in sbrugna...

5CVSS8AI score0.07017EPSS
Exploits0References26
redhat
redhat
added 2022/01/17 9:33 p.m.3 views

resteasy: Error message exposes endpoint class information

A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's parameter value. The...

5.3CVSS7AI score0.01439EPSS
Exploits0References4
redhat
redhat
added 2021/12/15 2:42 p.m.4 views

resteasy: Error message exposes endpoint class information

A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's parameter value. The...

5.3CVSS7AI score0.01439EPSS
Exploits0References4
redhat
redhat
added 2021/11/15 5:18 p.m.7 views

resteasy: Error message exposes endpoint class information

A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's parameter value. The...

5.3CVSS7AI score0.01439EPSS
Exploits0References4
redhat
redhat
added 2021/09/30 9:57 a.m.5 views

resteasy: Error message exposes endpoint class information

A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's parameter value. The...

5.3CVSS7AI score0.01439EPSS
Exploits0References4
nessus
nessus
added 2020/01/27 12:0 a.m.41 views

SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2020:0223-1)

This update for samba fixes the following issues : Security issues fixed : CVE-2019-14907: Fixed a Server-side crash after charset conversion failure during NTLMSSP processing bsc1160888. CVE-2019-14902: Fixed an issue where automatic replication of ACLs down subtree on AD Directory is not workin...

6.5CVSS6.6AI score0.03151EPSS
Exploits0References11
osv
osv
added 2020/01/21 4:24 p.m.6 views

SUSE-SU-2020:0152-1 Security update for samba

This update for samba fixes the following issues: - CVE-2019-14907: Fixed a Server-side crash after charset conversion failure during NTLMSSP processing bsc1160888...

6.5CVSS6.7AI score0.03151EPSS
Exploits0References3
osv
osv
added 2015/12/15 9:59 p.m.9 views

CVE-2015-7498

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure...

6.4AI score
Exploits0References17
prion
prion
added 2014/06/23 2:55 p.m.31 views

Memory corruption

The pushascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service memory corruption and daemon crash via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a...

2.7CVSS6.7AI score0.07269EPSS
Exploits0References23Affected Software1
cvelist
cvelist
added 2014/06/23 2:0 p.m.36 views

CVE-2014-3493

The pushascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service memory corruption and daemon crash via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a...

6AI score0.07269EPSS
Exploits0References23
ubuntucve
ubuntucve
added 2012/06/06 12:0 a.m.29 views

CVE-2012-1947

Heap-based buffer overflow in the utf16toisolatin1 function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to execute arbitrary code via vectors that trigger a...

9.3CVSS7.8AI score0.04673EPSS
Exploits0References4
openvas
openvas
added 2009/03/26 12:0 a.m.28 views

PostgreSQL Denial of Service Vulnerability (Linux)

This host is installed with PostgreSQL Server and is prone to denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpostgresqldosvulnlin.nasl 5122 2017-01-27 12:16:00Z teissa $ PostgreSQL Denial of Service Vulnerability Linux Authors: Sujit Ghosal Copyright: Copyright c 2009...

4CVSS7.6AI score0.10242EPSS
Exploits2References2
Rows per page
Query Builder