71 matches found
EUVD-2023-53264
Malicious code in bioql PyPI...
CVE-2025-55847
Wavlink M86X3AV240730 contains a buffer overflow vulnerability in the /cgi-bin/ExportAllSettings.cgi file. The vulnerability arises because the Cookie parameter does not properly validate the length of input data. Attackers can exploit this to execute arbitrary code or cause a denial of service D...
SUSE-SU-2025:20453-1 Security update for libsoup
This update for libsoup fixes the following issues: - CVE-2025-4476: Fixed null pointer dereference that may lead to denial of service bsc1243422 - CVE-2025-4948: Fixed Integer Underflow in soupmultipartnewfrommessage Leading to Denial of Service in libsoup bsc1243332 - CVE-2025-4969: Fixed...
CVE-2023-47091
An issue was discovered in Stormshield Network Security SNS SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible...
SUSE CVE-1999-0071
Apache httpd cookie buffer overflow for versions 1.1.1 and earlier...
CVE-2023-49262
The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session...
PT-2024-13719 · Hongdian · H8951-4G-Esp +1
Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The authentication mechanism can be bypassed by overflowing the value of the authentication field in the Cookie, provided there is an active user session. Recommendations: At the moment,...
Hongdian Router H8951-4G-ESP Security Vulnerability
The Hongdian Router H8951-4G-ESP is a wireless router from China Hongdian. A security vulnerability exists in versions prior to Hongdian H8951-4G-ESP 2310271149. An attacker can exploit this vulnerability to bypass the authentication mechanism by overflowing the value of the "authentication" fiel...
CVE-2023-47091
An issue was discovered in Stormshield Network Security SNS SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible...
CVE-2023-47091
An issue was discovered in Stormshield Network Security SNS SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible...
PT-2023-30300 · Stormshield · Stormshield Network Security
Name of the Vulnerable Software and Affected Versions: Stormshield Network Security SNS versions 4.3.13 through 4.3.22 Stormshield Network Security SNS versions 4.6.0 through 4.6.9 Stormshield Network Security SNS versions 4.7.0 through 4.7.1 Description: An issue was discovered in Stormshield...
Stormshield Network Security Security Vulnerabilities
Stormshield Network Security is a next-generation UTM Unified Threat Management firewall from the French company Stormshield. A security vulnerability exists in Stormshield Network Security that stems from a vulnerability that allows an attacker to make a cookie threshold overflow, which could...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
RHEL 8 : thunderbird (RHSA-2023:4492)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:4492 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.14.0. Security Fixes: Mozilla...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...
Mozilla: Cookie jar overflow caused unexpected cookie jar state
The Mozilla Foundation Security Advisory describes this flaw as: When the number of cookies per domain was exceeded in document.cookie, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies...