Lucene search
K

6 matches found

OSV
OSV
added 2026/06/30 1:19 p.m.3 views

UBUNTU-CVE-2026-58011

A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the gdatetimegetymd function in the glib/gdatetime.c file when an invalid GDateTime object produced by the gdatetimeaddfull function is processed. This flaw can corrupt the date output and potentially cause logic errors...

7.5CVSS5.7AI score0.00344EPSS
Exploits1References3
NVD
NVD
added 2024/04/23 5:15 a.m.38 views

CVE-2024-21511

Versions of the package mysql2 before 3.9.7 are vulnerable to Arbitrary Code Injection due to improper sanitization of the timezone parameter in the readCodeFor function by calling a native MySQL Server date/time function...

9.8CVSS9.6AI score0.01025EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/04/23 5:0 a.m.13 views

CVE-2024-21511

Versions of the package mysql2 before 3.9.7 are vulnerable to Arbitrary Code Injection due to improper sanitization of the timezone parameter in the readCodeFor function by calling a native MySQL Server date/time function...

9.8CVSS9.6AI score0.01025EPSS
Exploits0References4
OSV
OSV
added 2024/04/23 5:0 a.m.18 views

CVE-2024-21511

Versions of the package mysql2 before 3.9.7 are vulnerable to Arbitrary Code Injection due to improper sanitization of the timezone parameter in the readCodeFor function by calling a native MySQL Server date/time function...

9.8CVSS7.4AI score0.01025EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/04/23 12:0 a.m.5 views

mysql2 安全漏洞

MySQL2 is a MySQL client for Node.js by Andrey Sidorov, a personal developer. A security vulnerability exists in mysql2 2 versions prior to 3.9.7, which originates from an arbitrary code injection via an incorrect cleanup of the timezone parameter in the readCodeFor function by calling the native...

9.8CVSS7.6AI score0.01025EPSS
Exploits0References5
CNVD
CNVD
added 2017/02/10 12:0 a.m.3 views

GStreamer Denial of Service Vulnerability (CNVD-2017-01488)

GStreamer is a set of frameworks for handling streaming media. A denial of service vulnerability exists in the gstdatetimenewfromiso8601string function in GStreamer gst/gstdatetime.c. A remote attacker can cause a denial of service out-of-bounds heap read via a malformed datetime string...

7.5CVSS7.5AI score0.04574EPSS
Exploits0References1
Rows per page
Query Builder