33 matches found
CVE-2026-55199
CVE-2026-55199 affects libssh2 up to version 1.11.1. The vulnerability lies in the SSH_MSG_EXT_INFO handler (src/packet.c), where return values from _libssh2_get_string() are unchecked. During key exchange, a malicious SSH server can set nr_extensions to 0xFFFFFFFF, causing the client to spin in ...
PT-2026-50527
Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.1 Description A pre-authentication denial of service issue exists in the SSH MSG EXT INFO handler within src/packet.c. A malicious SSH server can trigger a CPU exhaustion loop on the client by sending a crafted...
Azure Linux 3.0 Security Update: jose (CVE-2023-50967)
The version of jose installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-50967 advisory. - latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c...
EUVD-2017-6387
Malware in sbrugna...
EUVD-2019-2344
Malware in sbrugna...
EUVD-2014-9476
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-50658
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value. CVE-2023-50658 No...
latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
...
Astra Linux – Vulnerability in Jose
Latchset JOSE with version 11 allows attackers to cause a denial of service CPU consumption by using a large p2c value also known as PBES2 Count...
CVE-2024-42130
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2024-42130
...
SUSE CVE-2023-50967
latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
AZL-43528 CVE-2023-50967 affecting package jose 10-7
latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
UBUNTU-CVE-2023-50967
latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
DEBIAN-CVE-2021-47107
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix READDIR buffer overflow If a client sends a READDIR count argument that is too small say, zero, then the buffer size calculation in the new initdirlist helper functions results in an underflow, allowing the XDR stream...
The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
...
DEBIAN-CVE-2023-51775
The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
DEBIAN-CVE-2023-50658
The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
AZL-35422 CVE-2023-50658 affecting package telegraf for versions less than 1.29.4-1
The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value...
PT-2023-31606 · Jose2Go +2 · Jose2Go +2
Name of the Vulnerable Software and Affected Versions: jose2go versions prior to 1.6.0 Description: The issue allows attackers to cause a denial of service, specifically CPU consumption, via a large p2c also known as PBES2 Count value in a PBES2 encrypted JWE blob. This can occur when an...