Lucene search
K

3279 matches found

OSV
OSV
added 2026/02/10 12:0 a.m.5 views

ALSA-2026:2389 Important: brotli security update

Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It...

7.5CVSS5.6AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.3 views

Oracle Linux 8 : brotli (ELSA-2026-2389)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2389 advisory. 1.0.6-4 - Resolves: RHEL-133986 CVE-2025-6176 Brotli decompression bomb DoS in scrapy Tenable has extracted the preceding description block directly from the...

7.5CVSS5.6AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/09 9:1 a.m.8 views

urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion

A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain...

8.9CVSS5.7AI score0.00622EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/02/09 2:38 a.m.7 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/09 2:38 a.m.2 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/09 2:33 a.m.2 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/09 2:33 a.m.6 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/09 2:21 a.m.3 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/09 2:21 a.m.6 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/09 1:41 a.m.2 views

freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server.

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. This vulnerability occurs because the freerdpbitmapdecompressplanar function does not properly validate bitmap dimensions when decompressing planar bitmap data. A malicious server can exploit this by sending...

9.8CVSS6.6AI score0.00443EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/02/09 1:39 a.m.5 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/09 1:39 a.m.6 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.2 views

RHEL 9 : brotli (RHSA-2026:2229)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2229 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.3 views

RHEL 9 : brotli (RHSA-2026:2226)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2226 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.4 views

RHEL 9 : brotli (RHSA-2026:2227)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2227 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.4 views

RHEL 9 : brotli (RHSA-2026:2228)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2228 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/02/07 9:6 a.m.7 views

brotli security update

An update is available for brotli. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Brotli is a generic-purpose lossless compression algorithm that compresses dat...

7.5CVSS7.2AI score0.00509EPSS
Exploits0
OSV
OSV
added 2026/02/07 9:6 a.m.7 views

RLSA-2026:2042 Important: brotli security update

Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It...

7.5CVSS7.2AI score0.00509EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/02/07 1:35 a.m.222 views

Exploit for Improper Handling of Length Parameter Inconsistency in Mongodb

MongoBleed CVE-2025-14847 Scanner and Exploitation Toolkit...

8.7CVSS5.9AI score0.83007EPSS
Exploits39
OSV
OSV
added 2026/02/06 3:54 p.m.4 views

OESA-2026-1290 python-urllib3 security update

HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more. Security Fixes: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loadin...

8.9CVSS5.5AI score0.02667EPSS
Exploits0References2
Rows per page
Query Builder