Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-36846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of t...

9.8CVSS6.8AI score0.03217EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/01 1:46 a.m.8 views

CVE-2020-36846

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

9.8CVSS7.1AI score0.03217EPSS
Exploits0References1
Circl
Circl
added 2025/05/30 2:41 a.m.17 views

CVE-2020-36846

creationtimestamp| type| source ---|---|--- 2025-05-30 02:41:43+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqe7gz6uxnt2 2025-05-30 04:01:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqedwihsig2o...

9.8CVSS7AI score0.00534EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/30 12:50 a.m.11 views

CVE-2020-36846 IO::Compress::Brotli versions prior to 0.007 for Perl have an integer overflow in the bundled Brotli C library

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

9.6AI score0.03217EPSS
Exploits0References5
CVE
CVE
added 2025/05/30 12:50 a.m.100 views

CVE-2020-36846

CVE-2020-36846 maps to IO::Compress::Brotli using an embedded Brotli library vulnerable to a buffer overflow (CVE-2020-8927). Affected: IO::Compress::Brotli versions < 0.007 bundled with Brotli

9.8CVSS6.6AI score0.03217EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/05/30 12:50 a.m.12 views

CVE-2020-36846

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

9.8CVSS5.5AI score0.00534EPSS
Exploits0
Cvelist
Cvelist
added 2025/05/30 12:50 a.m.22 views

CVE-2020-36846 IO::Compress::Brotli versions prior to 0.007 for Perl have an integer overflow in the bundled Brotli C library

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

0.03217EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/05/30 12:0 a.m.7 views

CVE-2020-36846

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

9.8CVSS5.9AI score0.00534EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2022/05/24 5:28 p.m.5 views

django-static-compress (=1.0.2), dragg (=0.0.0) +6 more potentially affected by CVE-2020-36846 +1 more via brotli (>=0.6.0 <=1.0.7)

brotli PYPI version =0.6.0, =1.2.3, =0.0.2, =0.0.3 - quart-compress =0.1.0 - vasp-tools =0.1.0 Source cves: CVE-2020-36846, CVE-2020-8927 Source advisory: OSV:GHSA-5V8V-66V8-MWM7...

9.8CVSS6.8AI score0.03217EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/24 5:28 p.m.8 views

compu (>=0.1.0 <=0.2.0), fie (>=0.16.0 <=0.16.3) +2 more potentially affected by CVE-2020-36846 +1 more via compu-brotli-sys (=0.1.3)

compu-brotli-sys CARGO version =0.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on compu-brotli-sys and may be impacted: - compu =0.1.0, =0.16.0, =1.0.0, =1.0.10 Source cves: CVE-2020-36846, CVE-2020-8927 Source advisory: OSV:GHSA-5V8V-66V8-MWM7...

9.8CVSS6.8AI score0.03217EPSS
Exploits0
Rows per page
Query Builder