Lucene search
K

8 matches found

EUVD
EUVD
added 2026/06/15 2:6 p.m.11 views

EUVD-2026-36732

Mattermost Desktop App versions =6.1 5.5.13.0 fail to account for attempting to open extremely long URLs in the Mattermost Desktop App which allows a malicious server owner to crash the application via including a script to call window.open on a very large URL. Mattermost Advisory ID:...

6.5CVSS5.2AI score0.00199EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.15 views

PT-2026-49243

Name of the Vulnerable Software and Affected Versions Mattermost Desktop App versions prior to 6.1 Mattermost Desktop App version 5.5.13.0 Description The application fails to properly handle attempts to open extremely long URLs. A malicious server owner can cause the application to crash by...

6.5CVSS5.9AI score0.00199EPSS
Exploits0References4
OSV
OSV
added 2025/11/04 12:20 a.m.6 views

CVE-2025-46556 MantisBT is Vulnerable to Denial-of-Service (DoS) attack via Excessive Note Length

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.27.1 and below allow attackers to permanently corrupt issue activity logs by submitting extremely long notes tested with 4,788,761 characters due to a lack of server-side validation of note length. Once such a note is added,...

6.5CVSS6.7AI score0.00375EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.7 views

PT-2025-44808

Name of the Vulnerable Software and Affected Versions Mantis Bug Tracker versions 2.27.1 and below Description Mantis Bug Tracker is an open source issue tracker. A lack of server-side validation of note length allows attackers to permanently corrupt issue activity logs by submitting extremely lo...

7.5CVSS6.6AI score0.00375EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 2:47 a.m.2 views

CVE-2023-30082

A denial of service attack might be launched against the server if an unusually lengthy password more than 10000000 characters is supplied using the osTicket application. This can cause the website to go down or stop responding. When a long password is entered, this procedure will consume all...

7.5CVSS6.9AI score0.00999EPSS
Exploits1References1
OSV
OSV
added 2021/08/18 5:15 p.m.2 views

CVE-2021-23424

This affects all versions of package ansi-html. If an attacker provides a malicious string, it will get stuck processing the input for an extremely long time...

7.5CVSS7.3AI score0.01981EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.47 views

EulerOS 2.0 SP3 : python-pillow (EulerOS-SA-2020-2080)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Integer overflow in the ImagingResampleHorizontal function in libImaging/Resample.c in Pillow before 3.1.1 allows remote attackers to have...

10CVSS7.3AI score0.07871EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2020/04/20 12:0 a.m.8 views

PT-2020-14913 · Freeipa +6 · Ipa +6

Name of the Vulnerable Software and Affected Versions: ipa versions 4.x.x through 4.8.0 Description: A flaw was found in the password hashing process. When a very long password = 1,000,000 characters is sent to the server, it could exhaust memory and CPU, leading to a denial of service and the...

6.9CVSS6.5AI score0.99019EPSS
Exploits20References145
Rows per page
Query Builder