Lucene search
K

8 matches found

AlpineLinux
AlpineLinux
added 2026/06/25 5:22 p.m.7 views

CVE-2026-47770

jq is a command-line JSON processor. Prior to 1.8.2, comparing two sufficiently deeply nested arrays with the == operator exhausts the C stack on jq's ordinary command-line surface, resulting in denial of service via stack exhaustion uncontrolled recursion. The crash occurs in jq's recursive...

6.8CVSS5.9AI score0.00111EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/05/04 2:45 a.m.5 views

CVE-2026-7724 PrefectHQ prefect Webhook/Notification validate_restricted_url toctou

A vulnerability has been found in PrefectHQ prefect up to 3.6.28.dev1. Affected by this vulnerability is the function validaterestrictedurl of the component Webhook/Notification. The manipulation leads to time-of-check time-of-use. It is possible to initiate the attack remotely. The attack is...

5CVSS5.1AI score0.0025EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.9 views

CVE-2022-31781

Apache Tapestry up to version 5.8.1 is vulnerable to Regular Expression Denial of Service ReDoS in the way it handles Content Types. Specially crafted Content Types may cause catastrophic backtracking, taking exponential time to complete. Specifically, this is about the regular expression used on...

7.5CVSS6.9AI score0.01727EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-14717

Malicious code in bioql PyPI...

4.6CVSS6.3AI score0.00123EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:30 p.m.19 views

CVE-2021-29540

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a heap buffer overflow to occur in Conv2DBackpropFilter. This is because the...

7.8CVSS7.3AI score0.00215EPSS
Exploits1References1
OSV
OSV
added 2025/03/20 10:15 a.m.6 views

CVE-2024-6982

A remote code execution vulnerability exists in the Calculate function of parisneo/lollms version 9.8. The vulnerability arises from the use of Python's eval function to evaluate mathematical expressions within a Python sandbox that disables builtins and only allows functions from the math module...

8.4CVSS8.5AI score
Exploits0References2
OSV
OSV
added 2024/03/29 2:57 p.m.11 views

CVE-2024-29202 JumpServer vulnerable to Jinja2 template injection in Ansible leads to RCE in Celery

JumpServer is an open source bastion host and an operation and maintenance security audit system. Attackers can exploit a Jinja2 template injection vulnerability in JumpServer's Ansible to execute arbitrary code within the Celery container. Since the Celery container runs with root privileges and...

9.9CVSS8.9AI score0.05939EPSS
Exploits1References4
securityvulns
securityvulns
added 2003/07/15 12:0 a.m.36 views

Linux nfs-utils xlog() off-by-one bug

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux nfs-utils xlog off-by-one bug Product: nfs-utils Version: = 1.0.3 Vendor: http://sourceforge.net/projects/nfs/ URL: http://isec.pl/vulnerabilities/ CVE: CAN-2003-0252 Author: Janusz Niewiadomski [email protected] Date: July 14, 2003 Issu...

10CVSS1AI score0.15784EPSS
Exploits1
Rows per page
Query Builder