Lucene search
+L

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-0744

Malware in sbrugna...

5CVSS6.4AI score0.03119EPSS
Exploits0References6
OSV
OSV
added 2024/05/21 8:26 p.m.21 views

CVE-2024-35220 @fastify/session reuses destroyed session cookie

@fastify/session is a session plugin for fastify. Requires the @fastify/cookie plugin. When restoring the cookie from the session store, the expires field is overriden if the maxAge field was set. This means a cookie is never correctly detected as expired and thus expired sessions are not...

7.4CVSS7.2AI score0.00445EPSS
Exploits0References5
CVE
CVE
added 2024/05/21 8:26 p.m.54 views

CVE-2024-35220

Summary: CVE-2024-35220 affects the @fastify/session plugin for Fastify. When restoring a cookie from the session store, the expires field is overridden if maxAge is set, causing expired cookies/sessions to not be destroyed. The issue is fixed in version 10.8.0; affected users should upgrade to 1...

7.4CVSS7.4AI score0.00445EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

eStara SoftPhone 3.0.1 SIP Packet Multiple Malformed Field DoS

No description provided by source. source: http://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to crash. For the negative 'Expires' field issue:...

7.1AI score
Exploits0
Prion
Prion
added 2006/02/17 1:2 a.m.15 views

Design/Logic Flaw

eStara SIP softphone allows remote attackers to cause a denial of service crash via a SIP OPTIONS request with a negative Expires field...

5CVSS7.1AI score0.03119EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder