@caliperai/caliper (>=0.2.0 <=0.3.0), @doccov/api (>=0.6.0 <=0.6.4) +10 more potentially affected by CVE-2026-44479 via vercel (>=50.44.0 <=51.8.0)

vercel NPM version =50.44.0, =0.2.0, =0.6.0, =0.3.0-rc.2, =3.10.3, =1.1.1, =1.0.1, =1.0.2, =0.1.19, =0.4.0-rc.3, =1.0.0, =2.0.0 Source cves: CVE-2026-44479 Source advisory: OSV:GHSA-PGF8-2HGJ-GRQG...

OpenVPN 2.7.0_beta3 < 2.7.0_I017 Buffer Overflow (Windows)

According to its self-reported version number, the version of OpenVPN installed on the remote Windows host is affected by buffer overflow vulnerability: - The ovpn-dco-win version 2.8.0 has a flaw which appears when connecting to an OpenVPN 2.7.0 server, or other implementations with data epoch...

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

CVE-2026-2738

CVE-2026-2738 affects OpenVPN ovpn-dco-win 2.8.0. A buffer overflow in the handling of encrypted packets can be triggered by sending oversized packets to the remote peer when the AEAD tag appears at the end of the packet, enabling a local attacker to crash the system. The CVSS 4.0 vector indicate...

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

OpenVPN ovpn-dco-win 安全漏洞

OpenVPN ovpn-dco-win is a virtual network adapter for Windows developed by OpenVPN. Version 2.8.0 of OpenVPN ovpn-dco-win contains a security vulnerability. This vulnerability arises when AEAD tags appear at the end of encrypted packets, and sending excessively large packets to remote peers may...

CVE-2025-50054

Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier allows a local user process to send a too large control message buffer to the kernel driver resulting in a system crash...

This Week in Spring - January 7th, 2025

Hi, Spring fans, and happy new year! It's been another super seven days since we last spoke and, as always, there's a lot to cover so let's dive right into it! A long time in coming, but it's finally here! Hello DCO, Goodbye CLA: Simplifying Contributions to Spring the Spring AI hits just keep on...

Malicious code in dco-bot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df58cd3871074ca88952cb9f0b8a69f7b28de8e0eae69a383867d2eb48db891d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2370 Malicious code in dco-bot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df58cd3871074ca88952cb9f0b8a69f7b28de8e0eae69a383867d2eb48db891d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2005-1578

EnCase Forensic Edition 4.18a does not support Device Configuration Overlays DCO, which allows attackers to hide information without detection...

CVE-2005-1578

EnCase Forensic Edition 4.18a is affected by CVE-2005-1578, which describes that the product does not support Device Configuration Overlays (DCO). The underlying impact is that DCO non-support could allow an attacker to hide information without detection, with a CVSSv2 base score of 2.1 (LOW) and...

CVE-2005-1578

EnCase Forensic Edition 4.18a does not support Device Configuration Overlays DCO, which allows attackers to hide information without detection...