Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

UbuntuCve
UbuntuCveadded 2026/01/06 12:0 a.m.2 views

CVE-2025-69230

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...

6.9CVSS7AI score0.00011EPSS
Exploits0References3
AlpineLinux
AlpineLinuxadded 2026/01/05 11:47 p.m.2 views

CVE-2025-69230

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...

6.9CVSS6.7AI score0.00011EPSS
Exploits0
EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2020-21401

Malware in sbrugna...

5.3CVSS5.3AI score0.00986EPSS
Exploits0References2
OSV
OSVadded 2025/05/07 9:56 p.m.4 views

CLSA-2025-1746655009 mod_auth_openidc: Fix of CVE-2024-24814

CVE-2024-24814: fix DoS when OIDCSessionType client-cookie is set and a crafted Cookie header is supplied...

7.5CVSS6.8AI score0.00189EPSS
Exploits1References1
Oracle linux
Oracle linuxadded 2023/11/18 12:0 a.m.32 views

mod_auth_openidc:2.3 security and bug fix update

cjose 0.6.1-4 - CVE-2023-37464 cjose: AES GCM decryption uses the Tag length from the actual Authentication Tag provided in the JWE Resolves: rhbz2223308 modauthopenidc 2.4.9.4-5 Related: rhbz2141850 - fix cjose version dependency 2.4.9.4-4 Resolves: rhbz2141850 - authopenidc.conf mode 0640 by...

8.6CVSS7.6AI score0.00521EPSS
Exploits1
RedHat Linux
RedHat Linuxadded 2023/11/14 3:51 p.m.3 views

mod_auth_openidc: NULL pointer dereference when OIDCStripCookies is set and a crafted Cookie header is supplied

A flaw was found in modauthopenidc, an OpenID Certified™ authentication and authorization module for the Apache HTTP server. It is possible to trigger a NULL pointer dereference when OIDCStripCookies is set and a crafted Cookie header is supplied, leading to a segmentation fault and a denial of...

7.5CVSS5.7AI score0.00113EPSS
Exploits0References5
OSV
OSVadded 2021/01/14 4:15 p.m.1 views

CVE-2020-29019

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

5.3CVSS6.2AI score
Exploits0References1
Prion
Prionadded 2021/01/14 4:15 p.m.11 views

Stack overflow

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

5CVSS5.5AI score0.00986EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2017/04/25 8:0 p.m.17 views

CVE-2017-8219

TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow DoSing the HTTP server via a crafted Cookie header to the /cgi/ansi URI...

6.5AI score0.00267EPSS
Exploits2References1
Rows per page
Query Builder