Lucene search
K

5 matches found

Cvelist
Cvelist
added 2025/10/09 11:33 a.m.9 views

CVE-2025-2934 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 prior to 18.4.2 that could have allowed an authenticated attacker to create a denial of service condition by configuring malicious webhook endpoints that send crafted HTT...

4.3CVSS0.00495EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in libsoup3, libsoup2.4

A flaw was discovered in libsoup. The package is vulnerable to a heap buffer over-read issue when scanning content using the skipinsightwhitespace function. Libsoup clients may read one byte beyond the bounds of the memory area in response to a malicious HTTP response from an HTTP server...

7CVSS7.2AI score0.00786EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2025/05/26 11:8 a.m.3 views

libsoup: Heap buffer over-read in `skip_insignificant_space` when sniffing content

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skipinsightwhitespace function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP server...

7CVSS7.4AI score0.00786EPSS
Exploits1References5
OSV
OSV
added 2024/02/02 11:6 a.m.3 views

OESA-2024-1115 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker...

8.3CVSS8.1AI score0.04852EPSS
Exploits0References3
OSV
OSV
added 2018/07/19 2:29 p.m.4 views

CVE-2018-5535

On F5 BIG-IP 14.0.0, 13.0.0-13.1.0, 12.1.0-12.1.3, or 11.5.1-11.6.3 specifically crafted HTTP responses, when processed by a Virtual Server with an associated QoE profile that has Video enabled, may cause TMM to incorrectly buffer response data causing the TMM to restart resulting in a Denial of...

7.5CVSS6AI score0.02603EPSS
Exploits0References2
Rows per page
Query Builder