Lucene search
K

11 matches found

Vulnrichment
Vulnrichment
added 3 days ago5 views

CVE-2026-15308 Incremental HTMLParser feed() allows CPU-exhaustion DoS via repeated unterminated markup declarations

The incremental HTML parser html.parser.HTMLParser allows for CPU denial-of-service through repeated unterminated markup declarations when processing uncontrolled data...

8.7CVSS5.9AI score0.00553EPSS
Exploits0References7
Rockylinux
Rockylinux
added 2026/06/26 6:0 p.m.5 views

python27:2.7 security update

An update is available for python-backports-sslmatchhostname, python-ipaddress, python-markupsafe, module.python-chardet, module.python-pytest-mock, module.python-docs, python-pysocks, python-docutils, python-nose, module.python-markupsafe, module.python-dns, module.python-setuptoolsscm,...

7.5CVSS6.8AI score0.02453EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/16 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0155: postgresql-jdbc (ALINUX3-SA-2026:0155)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0155 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-42198: pgjdbc is an open source postgresql...

7.5CVSS5.5AI score0.0077EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/13 12:19 a.m.8 views

CVE-2026-8202 Post-authentication CPU utilization DoS via $trim/$ltrim/$rtrim operators

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

5.3CVSS5.8AI score0.00263EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/09 8:16 p.m.10 views

CVE-2026-42245

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, Net::IMAP::ResponseReader has quadratic time complexity when reading large responses containing many string literals. A hostile server can send responses which are...

7.5CVSS5.7AI score0.0041EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 3: python27 (TSSA-2023:0113)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0113 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS6.9AI score0.02453EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-9367

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2, that allows an...

4.3CVSS5.5AI score0.00475EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2024/12/20 4:18 a.m.4 views

SUSE CVE-2024-12401

A flaw was found in the cert-manager package. This flaw allows an attacker who can modify PEM data that the cert-manager reads, for example, in a Secret resource, to use large amounts of CPU in the cert-manager controller pod to effectively create a denial-of-service DoS vector for the cert-manag...

4.4CVSS9.1AI score0.00645EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/09/26 2:56 p.m.1 views

nodejs-semver: Regular expression denial of service

A Regular Expression Denial of Service ReDoS vulnerability was discovered in node-semver package via the 'new Range' function. This issue could allow an attacker to pass untrusted malicious regex user data as a range, causing the service to excessively consume CPU depending upon the input size,...

7.5CVSS6.8AI score0.02761EPSS
Exploits1References6
OSV
OSV
added 2022/06/01 6:9 p.m.6 views

CLSA-2022-1654106950 Fixed CVE-2021-33582 in cyrus-imapd

CVE-2021-33582: Fix a bad string hashing algorithm which could lead to collisions and cause a CPU denial of service...

7.5CVSS5.8AI score0.0307EPSS
Exploits0References1
OSV
OSV
added 2019/05/03 4:5 p.m.6 views

SUSE-SU-2019:1149-1 Security update for go1.10

This update for go1.10 fixes the following issues: Security issues fixed: - CVE-2019-6486: A CPU denial of service vulnerability affecting P-521 and P-384 elliptic curves was fixed. Other fixes: - go1.10.8 released 2019/01/23 security release fixes CVE-2019-6486. - Enable build for %arm bsc112576...

8.2CVSS8AI score0.04326EPSS
Exploits0References5
Rows per page
Query Builder