Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1649

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01149EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/02 4:7 p.m.5 views

Security Bulletin: IBM Operations Analytics - Log Analysis is affected by Denial of Service attack due to CyberNeko HTML Parser

Summary Security Bulletin: CyberNeko HTML is used by IBM Operations Analytics - Log Analysis as document ingestion in Logstash CVE-2022-29546, CVE-2022-24839, CVE-2022-28366 Vulnerability Details CVEID:CVE-2022-29546 DESCRIPTION: HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of...

7.5CVSS6.4AI score0.02114EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 10:41 p.m.10 views

CVE-2022-28366

Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...

7.5CVSS6.1AI score0.02114EPSS
Exploits0References1
Atlassian
Atlassian
added 2024/03/07 2:45 p.m.42 views

DoS (Denial of Service) net.sourceforge.nekohtml:nekohtml Dependency in Jira Software Data Center and Server

This High severity net.sourceforge.nekohtml:nekohtml Dependency vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.0, 9.3.0, 9.4.0, 9.5.0, 9.6.0, 9.7.0, 9.8.0, and 9.9.0 of Jira Software Data Center and Server. This net.sourceforge.nekohtml:nekohtml Dependency vulnerability, with a CVSS...

7.5CVSS9.5AI score0.01967EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.35 views

Atlassian Jira Service Management Data Center and Server 4.20 < 4.20.28 / 5.4.x < 5.4.12 / 5.5.x < 5.11.3 / 5.12.0 (JSDSERVER-14921)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14921 advisory. - Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI...

7.5CVSS7.1AI score0.02114EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.20 views

Atlassian Confluence 7.13.x / 8.1.x / 8.2.x / 8.3.x / 8.6.0 < 8.6.1 (CONFSERVER-93169)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-93169 advisory. - Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory...

7.5CVSS7.1AI score0.02114EPSS
Exploits0References2
Prion
Prion
added 2022/04/25 3:15 a.m.25 views

Design/Logic Flaw

HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability. Crafted input associated with the parsing of Processing Instruction PI data leads to heap memory consumption. This is similar to CVE-2022-28366 but affects a much later version of the product...

5CVSS7.3AI score0.01967EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/04/25 2:54 a.m.444 views

CVE-2022-29546

CVE-2022-29546 : HtmlUnit NekoHtml Parser before 2.61.0 has a denial-of-service vulnerability via crafted Processing Instructions that triggers heap memory consumption. The issue is triggered during PI data parsing and is described as similar to CVE-2022-28366 but affecting a much newer version. ...

7.5CVSS7.2AI score0.01149EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/04/21 11:15 p.m.22 views

CVE-2022-28366

Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...

7.5CVSS0.01967EPSS
Exploits0References3
OSV
OSV
added 2022/04/21 11:15 p.m.28 views

CVE-2022-28366

Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...

7.5CVSS7.2AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/04/21 11:15 p.m.40 views

CVE-2022-28366

Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...

7.5CVSS7AI score0.01967EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/04/21 10:41 p.m.38 views

CVE-2022-28366

Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...

7.5AI score0.01967EPSS
Exploits0References3
CVE
CVE
added 2022/04/21 10:41 p.m.176 views

CVE-2022-28366

CVE-2022-28366 affects Neko HTML parsers used by HtmlUnit-Neko (up to 2.26; fixed in 2.27) and by CyberNeko HTML (up to 1.9.22; 1.9.22 is the last release). The issue is a denial of service via crafted Processing Instruction input that leads to excessive heap memory consumption. OWASP AntiSamy be...

7.5CVSS7.1AI score0.01967EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder