Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-48929

Name of the Vulnerable Software and Affected Versions NanaZip versions 3.0.1000.0 through 6.0.1697.0 Description A heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser via the upstream 7-Zip AvbHandler. An unsigned integer underflow in a bounds check allows an...

5.4CVSS5.2AI score0.0017EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/07 3:26 a.m.32 views

CVE-2025-31990 HCL DevOps Velocity is susceptible to a Denial of Service vulnerability

Rate limiting for certain API calls is not being enforced, making HCL Velocity vulnerable to Denial of Service DoS attacks. An attacker could flood the system with a large number of requests, overwhelming its resources and causing it to become unresponsive to legitimate users. This vulnerability ...

6.8CVSS0.00251EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/07 3:26 a.m.7 views

CVE-2025-31990

Rate limiting for certain API calls is not being enforced, making HCL Velocity vulnerable to Denial of Service DoS attacks. An attacker could flood the system with a large number of requests, overwhelming its resources and causing it to become unresponsive to legitimate users. This vulnerability ...

6.8CVSS5.5AI score0.00251EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.10 views

PT-2026-6873

Rate limiting for certain API calls is not being enforced, making HCL Velocity vulnerable to Denial of Service DoS attacks. An attacker could flood the system with a large number of requests, overwhelming its resources and causing it to become unresponsive to legitimate users. This vulnerability ...

6.8CVSS5.6AI score0.00251EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/03/08 2:50 a.m.2 views

SUSE CVE-2025-26699

An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2.20. The django.utils.text.wrap method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings...

5.3CVSS6.9AI score0.00748EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/01/07 10:39 p.m.7 views

WordPress AdForest theme <= 5.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post/Attachment Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Post/Attachment Deletion vulnerability discovered by Lucio Sá in WordPress Theme AdForest versions = 5.1.7...

5.4CVSS7AI score0.00263EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.4 views

Bolt CMS 输入验证错误漏洞

Bolt CMS is an open source PHP-based content management system for the BOLT community. An input validation error vulnerability exists in Bolt CMS version 5.1.7, which stems from the folder name parameter being found to have incorrect input validation, allowing an attacker to perform directory...

9.1CVSS8.2AI score0.00737EPSS
Exploits0References3
Rows per page
Query Builder