Lucene search
K

256 matches found

Cvelist
Cvelist
added 2025/01/14 12:0 a.m.19 views

CVE-2024-57620

An issue in the trimchars component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

0.00562EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/14 12:0 a.m.13 views

CVE-2024-57646

An issue in the psiginfo component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

0.00551EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/14 12:0 a.m.37 views

CVE-2024-57662

An issue in the sqlghashsource component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

0.00807EPSS
Exploits1References1
CVE
CVE
added 2025/01/14 12:0 a.m.38 views

CVE-2024-57618

CVE-2024-57618 affects MonetDB Server v11.47.11, in the bind_col_exp component, allowing attackers to cause a Denial of Service via crafted SQL statements. The connected PT-2025-3485 advisory suggests disabling the bind_col_exp component as a temporary workaround until a patch is available; no pa...

7.5CVSS7.6AI score0.0052EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/14 12:0 a.m.28 views

CVE-2024-57659

An issue in the sqlgparalleltsseq component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

0.00668EPSS
Exploits1References1
CVE
CVE
added 2025/01/14 12:0 a.m.44 views

CVE-2024-57624

CVE-2024-57624 is a confirmed issue in the exp_atom component of MonetDB Server v11.49.1 that allows an attacker to cause a Denial of Service via crafted SQL statements. The vulnerability is documented across multiple feeds (NVD, Red Hat, CVE, etc.). Affected product: MonetDB Server; vulnerable c...

7.5CVSS7.6AI score0.00562EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/19 7:31 p.m.18 views

CVE-2024-52360 IBM Concert Software SQL injection

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database...

7.6CVSS7.7AI score0.00437EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.18 views

The vulnerability of the __nss_database_lookup component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the nssdatabaselookup component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially create...

7.8CVSS7.3AI score0.00909EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.6 views

The vulnerability of the mp_box_copy component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the mpboxcopy component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...

7.8CVSS7.3AI score0.00905EPSS
Exploits1References5Affected Software3
OSV
OSV
added 2024/06/13 8:32 a.m.14 views

USN-6832-1 virtuoso-opensource vulnerabilities

Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly handled certain crafted SQL statements. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-31607, CVE-2023-31608, CVE-2023-31609, CVE-2023-31610, CVE-2023-31611,...

7.5CVSS7.2AI score0.00909EPSS
Exploits16References17
Veracode
Veracode
added 2024/05/13 2:31 p.m.17 views

SQL Injection

openlink virtuoso-opensource is vulnerable to a Denial of Service DoS attack. The vulnerability is due to an issue in the libclongjmp component, which allows attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.5AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.16 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dfeqexplist component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.13 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the chasharray component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.14 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the sqlcuniondtwrap component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.15 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dksetdelete component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.18 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the schnametoobject component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.18 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the dfeunitcolloci component, allowing attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 2:31 p.m.17 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the artmdivint component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 12:43 p.m.14 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the sqloqueryspec component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00863EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/05/13 12:41 p.m.12 views

SQL Injection

openlink virtuoso-opensource is vulnerable to SQL Injection. The vulnerability is due to an issue in the kcvarcol component, enabling attackers to cause a DoS via crafted SQL statements...

7.5CVSS7.6AI score0.00905EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder