Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2025/10/31 2:13 p.m.1 views

OESA-2025-2611 libwebsockets security update

Libwebsockets LWS is a flexible, lightweight pure C library for implementing modern network protocols easily with a tiny footprint, using a nonblocking event loop. Security Fixes: Use After Free vulnerability exists in the WebSocket server implementation in lwshandshakeserver in warmcat...

7.5CVSS7.1AI score0.00075EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2025/10/20 1:51 p.m.7 views

CVE-2025-11678

Stack-based Buffer Overflow in lwsadnsparselabel in warmcat libwebsockets allows, when the LWSWITHSYSASYNCDNS flag is enabled during compilation, to overflow the labelstack, when the attacker is able to sniff a DNS request in order to craft a response with a matching id containing a label longer...

7.5CVSS5.2AI score0.00012EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/10/20 12:0 a.m.2 views

PT-2025-42761

Name of the Vulnerable Software and Affected Versions libwebsockets affected versions not specified Description A stack-based buffer overflow exists in the lws adns parse label function within libwebsockets. This occurs when the LWS WITH SYS ASYNC DNS flag is enabled during compilation and an...

7.5CVSS7AI score0.00075EPSS
Exploits0References16
Tenable Nessus
Tenable Nessusadded 2024/09/10 12:0 a.m.21 views

NewStart CGSL MAIN 6.02 : dhcp Multiple Vulnerabilities (NS-SA-2024-0061)

The remote NewStart CGSL host, running version MAIN 6.02, has dhcp packages installed that are affected by multiple vulnerabilities: - An integer overflow vulnerability was found in the DHCP server. When the optioncodehashlookup function is called from addoption, it increases the option's refcoun...

6.5CVSS7.1AI score0.00083EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2022/10/05 2:57 p.m.41 views

CVE-2022-2929

A vulnerability was found in the DHCP server where the "fqdnuniversedecode" function allocates buffer space for the contents of option 81 fqdn data received in a DHCP packet. The maximum length of a DNS "label" is 63 bytes. The function tests the length byte of each label contained in the "fqdn";...

6.5CVSS6.6AI score0.00083EPSS
Exploits0References4
n0where
n0whereadded 2018/01/01 7:21 p.m.16 views

Data Exfiltration over DNS Request Covert Channel: DNSExfiltrator

DNSExfiltrator allows for transfering exfiltrate a file over a DNS request covert channel. This is basically a data leak testing tool allowing to exfiltrate data over a covert channel. DNSExfiltrator has two sides: 1. The server side , coming as a single python script dnsexfiltrator.py , which ac...

1AI score
Exploits0References1
Check Point Advisories
Check Point Advisoriesadded 2014/12/28 12:0 a.m.2 views

DNS Label Compression Recursion Denial of Service - Ver2 (CVE-2007-1030)

A denial-of-service vulnerability has been reported in Niels Provos Libevent. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

7.8CVSS6AI score0.01594EPSS
Exploits0
Rows per page
Query Builder