Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1122 matches found

NVD
NVDadded 2019/07/25 2:15 p.m.9 views

CVE-2019-1010161

perl-CRYPT-JWT 0.022 and earlier is affected by: Incorrect Access Control. The impact is: bypass authentication. The component is: JWT.pm for JWT security token, line 614 in decodejws. The attack vector is: network connectivitycrafting user-controlled input to bypass authentication. The fixed...

9.8CVSS9.6AI score0.01103EPSS
Exploits0References1
OSV
OSVadded 2019/07/25 2:15 p.m.17 views

CVE-2019-1010161

perl-CRYPT-JWT 0.022 and earlier is affected by: Incorrect Access Control. The impact is: bypass authentication. The component is: JWT.pm for JWT security token, line 614 in decodejws. The attack vector is: network connectivitycrafting user-controlled input to bypass authentication. The fixed...

9.8CVSS7AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2019/07/25 2:15 p.m.37 views

CVE-2019-1010161

perl-CRYPT-JWT 0.022 and earlier is affected by: Incorrect Access Control. The impact is: bypass authentication. The component is: JWT.pm for JWT security token, line 614 in decodejws. The attack vector is: network connectivitycrafting user-controlled input to bypass authentication. The fixed...

9.8CVSS7.2AI score0.01103EPSS
Exploits0References2
CVE
CVEadded 2019/07/25 1:17 p.m.55 views

CVE-2019-1010161

CVE-2019-1010161 affects perl-CRYPT-JWT 0.022 and earlier, with Incorrect Access Control enabling bypass of authentication through crafted input. The vulnerable code is JWT.pm, line 614 in _decode_jws(). The attack vector involves network input. A fix is available in version 0.023.

9.8CVSS9.5AI score0.01103EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVEadded 2019/07/25 1:17 p.m.24 views

CVE-2019-1010161

perl-CRYPT-JWT 0.022 and earlier is affected by: Incorrect Access Control. The impact is: bypass authentication. The component is: JWT.pm for JWT security token, line 614 in decodejws. The attack vector is: network connectivitycrafting user-controlled input to bypass authentication. The fixed...

9.8CVSS9.7AI score0.01103EPSS
Exploits0
OSV
OSVadded 2019/07/17 9:15 p.m.13 views

CVE-2019-1010263

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

9.8CVSS7.1AI score
Exploits0References2
NVD
NVDadded 2019/07/17 9:15 p.m.10 views

CVE-2019-1010263

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

9.8CVSS9.7AI score0.01301EPSS
Exploits1References2
Prion
Prionadded 2019/07/17 9:15 p.m.14 views

Authentication flaw

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

7.5CVSS9.6AI score0.01301EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2019/07/17 9:15 p.m.27 views

CVE-2019-1010263

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

9.8CVSS7.2AI score0.01301EPSS
Exploits1References3
CVE
CVEadded 2019/07/17 8:32 p.m.51 views

CVE-2019-1010263

The CVE-2019-1010263 entry concerns Perl Crypt::JWT prior to 0.023, with an Incorrect Access Control flaw in JWT.pm (line 614) that allows an attacker to bypass authentication by crafting a token using hmac(). The attack vector is network connectivity, and the issue is fixed in the commit b98a59b...

9.8CVSS9.6AI score0.01301EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2019/07/17 8:32 p.m.17 views

CVE-2019-1010263

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

9.7AI score0.01301EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2019/07/17 8:32 p.m.17 views

CVE-2019-1010263

Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac. The component is: JWT.pm, line 614. The attack vector is: network connectivity. The fixed version is: after commit...

9.8CVSS9.7AI score0.01301EPSS
Exploits1
Cvelist
Cvelistadded 2019/07/02 8:13 p.m.16 views

CVE-2017-8415

An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. The device has a custom telnet daemon as a part of the busybox and retrieves the password from the shadow file using the function getspnam at address 0x00053894. Then performs a crypt operation on the password retrieved from the use...

9.5AI score0.0393EPSS
Exploits0References3
Veracode
Veracodeadded 2019/05/02 5:1 a.m.32 views

Denial Of Service (DoS)

postgresql is vulnerable to denial of service. The library does not properly check the return value of the crypt library function, allowing a malicious users to cause an application crash...

4CVSS8.7AI score0.04682EPSS
Exploits2References26Affected Software4
NVD
NVDadded 2019/04/15 12:31 p.m.17 views

CVE-2019-11222

gfbin128parse in utils/osdivers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafteddrmfile.xml file...

7.8CVSS7.8AI score0.01353EPSS
Exploits1References4
OSV
OSVadded 2019/04/15 12:31 p.m.17 views

CVE-2019-11222

gfbin128parse in utils/osdivers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafteddrmfile.xml file...

7.8CVSS7.2AI score
Exploits0References4
Prion
Prionadded 2019/04/15 12:31 p.m.17 views

Buffer overflow

gfbin128parse in utils/osdivers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafteddrmfile.xml file...

6.8CVSS7.8AI score0.01353EPSS
Exploits1References4Affected Software2
UbuntuCve
UbuntuCveadded 2019/04/15 12:31 p.m.20 views

CVE-2019-11222

gfbin128parse in utils/osdivers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafteddrmfile.xml file...

7.8CVSS7.2AI score0.01353EPSS
Exploits1References3
OSV
OSVadded 2019/04/15 12:31 p.m.1 views

UBUNTU-CVE-2019-11222

gfbin128parse in utils/osdivers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafteddrmfile.xml file...

7.8CVSS7.4AI score0.01353EPSS
Exploits1References4
CVE
CVEadded 2019/04/12 7:5 p.m.64 views

CVE-2019-11222

CVE-2019-11222 affects GPAC 0.7.1, specifically the gf_bin128_parse function in utils/os_divers.c, where parsing a crafted_drm_file.xml can trigger a buffer overflow. The connected records corroborate this vulnerability detail and describe the issue as a buffer overflow in gpac’s handling of craf...

7.8CVSS7.7AI score0.01353EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder