Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.19 views

PT-2026-44975

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.43.4 Description A flaw exists in the way the library handles chunked Transfer-Encoding. The read payload function in httplib.h uses std::strtoul to parse the chunk-size field. Because std::strtoul accepts leadi...

7.8CVSS5.8AI score0.00327EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/01/07 4:10 p.m.22 views

CVE-2026-22543 WEEK ENCODING FOR PASSWORDS

The credentials required to access the device's web server are sent in base64 within the HTTP headers. Since base64 is not considered a strong cipher, an attacker could intercept the web request handling the login and obtain the credentials...

6.9CVSS0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/19 4:14 p.m.4 views

CVE-2025-50200 RabbitMQ Node can log Basic Auth header from an HTTP request

RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which...

6.7CVSS6.5AI score0.00194EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/06/04 1:6 p.m.6 views

SUSE CVE-2020-27823

A flaw was found in OpenJPEG's encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS7.1AI score0.01107EPSS
Exploits0References6
Rows per page
Query Builder