Lucene search
K

58 matches found

RedhatCVE
RedhatCVE
added 2026/06/12 2:35 p.m.21 views

CVE-2026-44631

A flaw was found in Apache HTTP Server. This buffer underwrite vulnerability occurs when processing crafted regular expressions in the server's configuration. An attacker could potentially exploit this to cause a denial of service. Mitigation Only loadtrustedApache configuration; the bug triggers...

9.8CVSS5.4AI score0.00486EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.8 views

Apache HTTP Server 安全漏洞

Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. There is a buffer overflow vulnerability present in Apache HTTP Server, but detailed informatio...

9.8CVSS6.2AI score0.00486EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/30 2:12 a.m.16 views

CVE-2026-44796

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/28 5:0 p.m.10 views

EUVD-2026-32975

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/28 5:0 p.m.9 views

CVE-2026-44796 Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References5
OSV
OSV
added 2026/05/13 3:30 p.m.6 views

GHSA-QRPW-GJVH-X5GM Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

Impact Nautobot UI object-bulk-rename endpoints for example, /dcim/interfaces/rename/ were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in combination with the useregex flag. Patches A general-purpose timeout has been added to thes...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

Parse Server 安全漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. There were security vulnerabilities in versions of Parse Server prior to 9.5.0-alpha.14 and 8.6.11. These vulnerabilities stemmed from malicious clients being able t...

8.2CVSS5.8AI score0.00446EPSS
Exploits0References4
Debian
Debian
added 2025/12/03 4:4 a.m.8 views

[SECURITY] [DLA 4393-1] mako security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4393-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 03, 2025 https://wiki.debian.org/LTS -...

7.5CVSS6.7AI score0.01656EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-7207

Malware in sbrugna...

4.3CVSS6AI score0.01666EPSS
Exploits0References34
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-8268

Malware in sbrugna...

9.8CVSS8.5AI score0.07059EPSS
Exploits0References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-8263

Malware in sbrugna...

7.5CVSS8.5AI score0.05286EPSS
Exploits1References13
Cvelist
Cvelist
added 2025/08/18 2:1 p.m.7 views

CVE-2025-33090 IBM Concert Software denial of service

IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to cause a denial of service using a specially crafted regular expression that would cause excessive resource consumption...

7.5CVSS0.00372EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/18 12:0 a.m.3 views

IBM Concert Software 安全漏洞

IBM Concert Software is IBM's generative AI-driven automated application management and monitoring tool based on the WatsonX platform, focused on optimizing the operational efficiency and reliability of applications. A denial of service vulnerability exists in IBM Concert Software, which stems fr...

7.5CVSS6.5AI score0.00372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/04 12:0 a.m.12 views

Cisco NX-OS Resource Management Errors (CVE-2013-1121)

The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service device reload via a crafted AS path set, aka Bug ID CSCuf49554. This plugin only works with Tenable.ot. Please visit...

5.4CVSS5.8AI score0.0106EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/11/25 12:0 a.m.4 views

PT-2023-7202

Name of the Vulnerable Software and Affected Versions perl versions 5.30.0 through 5.38.0 Description The issue is related to a buffer overflow in dynamic memory due to improper handling of crafted regular expressions. This can allow a remote attacker to control the buffer overflow, potentially...

9.8CVSS8.2AI score0.02046EPSS
Exploits1References78
SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.2 views

SUSE CVE-2013-2266

libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service memory consumption via a crafted regular expression, as demonstrated by a memory-exhaustion attack again...

7.8CVSS7.4AI score0.42851EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.4 views

SUSE CVE-2015-2327

PCRE before 8.36 mishandles the /a\2|a\g/ pattern and related patterns with certain internal recursive back references, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a...

7.5CVSS7.5AI score0.04049EPSS
Exploits1References24
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.2 views

SUSE CVE-2015-8380

The pcreexec function in pcreexec.c in PCRE before 8.38 mishandles a // pattern with a \01 string, which allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegE...

7.5CVSS9.5AI score0.04436EPSS
Exploits1References23
Tenable Nessus
Tenable Nessus
added 2022/10/11 12:0 a.m.26 views

Ubuntu 16.04 ESM : PCRE vulnerabilities (USN-5665-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5665-1 advisory. It was discovered that PCRE incorrectly handled certain regular expressions. A remote attacker could use this issue to cause applications using PCRE to...

7.5CVSS7.5AI score0.05033EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/10/03 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2022-0350)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01656EPSS
Exploits1References5
Rows per page
Query Builder