Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2026/06/09 2:4 p.m.10 views

CVE-2026-49762 Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service

Uncontrolled Resource Consumption vulnerability in the Elixir standard library's Version module allows an attacker who controls a version string to cause a denial of service through CPU and memory exhaustion. The version parser converts numeric version components major, minor, patch and numeric...

5.1CVSS5.5AI score0.00152EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.12 views

Elixir 资源管理错误漏洞

Elixir is a functional programming language developed under open source, running on the BEAM virtual machine. Versions of Elixir from 1.5.0 to 1.20.1 contained a resource management vulnerability. This vulnerability stemmed from an uncontrolled resource consumption issue within the Version module...

5.1CVSS5.3AI score0.00152EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/01 10:58 p.m.5 views

CVE-2026-32926

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!loadlinkinf. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS5.9AI score0.00189EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/11/07 4:20 a.m.14 views

CVE-2023-40453

Docker Machine through 0.16.2 allows an attacker, who has control of a worker node, to provide crafted version data, which might potentially trick an administrator into performing an unsafe action via escape sequence injection, or might have a data size that causes a denial of service to a bastio...

6.5CVSS7AI score
Exploits0References3
Prion
Prion
added 2023/05/04 8:15 p.m.20 views

Authentication flaw

A vulnerability in the web-based management interface of Cisco SPA112 2-Port Phone Adapters could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to a missing authentication process within the firmware upgrade function. An...

7.5CVSS9.6AI score0.38148EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2017/07/24 8:29 p.m.25 views

CVE-2017-9553

A design flaw in SYNO.API.Encryption in Synology DiskStation Manager DSM before 6.1.3-15152 allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter...

7.5CVSS7.5AI score0.01427EPSS
Exploits0References2
Prion
Prion
added 2017/07/24 8:29 p.m.18 views

Design/Logic Flaw

A design flaw in SYNO.API.Encryption in Synology DiskStation Manager DSM before 6.1.3-15152 allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter...

4.3CVSS7.2AI score0.01427EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2017/07/24 12:0 a.m.5 views

PT-2017-19013 · Synology · Synology Diskstation Manager

Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 6.1.3-15152 Description: A design flaw in SYNO.API.Encryption allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter. Recommendations: For...

7.5CVSS7.3AI score0.01427EPSS
Exploits0References5
Rows per page
Query Builder