Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.23 views

Rocky Linux 9 : nodejs:18 (RLSA-2024:6147)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6147 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction vi...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/09/03 2:29 a.m.3 views

node-tar: denial of service while parsing a tar file due to lack of folders depth validation

A flaw was found in ISAACS's node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially...

6.5CVSS7.4AI score0.00929EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.39 views

AlmaLinux 8 : nodejs:18 (ALSA-2024:6148)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6148 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction via...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.30 views

AlmaLinux 9 : nodejs:18 (ALSA-2024:6147)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6147 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction via...

6.5CVSS6.6AI score0.01104EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/08/26 8:36 a.m.3 views

node-tar: denial of service while parsing a tar file due to lack of folders depth validation

A flaw was found in ISAACS's node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially...

6.5CVSS7.4AI score0.00929EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/08/26 12:0 a.m.46 views

AlmaLinux 8 : nodejs:20 (ALSA-2024:5814)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:5814 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction via...

6.5CVSS6.4AI score0.01104EPSS
Exploits1References5
OSV
OSV
added 2024/03/08 11:7 a.m.12 views

OESA-2024-1259 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does not validate the stack depth,...

5.5CVSS8.4AI score0.0027EPSS
Exploits0References2
OSV
OSV
added 2020/09/25 4:22 a.m.9 views

OPENSUSE-SU-2020:1523-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue bsc1010979. - CVE-2016-9399: Fix assert in calcstepsizes bsc1010980. - CVE-2017-5499: Validate component depth bit bsc1020451. - CVE-2017-5503: Check bounds in jasseq2dbindsub bsc1020456. -...

7.8CVSS6.6AI score0.05981EPSS
Exploits10References29
Rows per page
Query Builder