Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2026/05/07 2:20 a.m.10 views

SUSE CVE-2026-33190

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the tsig plugin can be bypassed on non-plain-DNS transports DoT, DoH, DoH3, DoQ, and gRPC because it trusts the transport writer's TsigStatus instead of performing verification itself. The DoH and DoH3 writer's TsigStatus...

7.5CVSS5.8AI score0.00374EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/10/13 5:29 a.m.5 views

CVE-2025-61689

HTTP.jl is an HTTP client and server functionality for the Julia programming language. Prior to version 1.10.19, HTTP.jl did not validate header names/values for illegal characters, allowing CRLF-based header injection and response splitting. This enables HTTP response splitting and header...

9.2CVSS7.2AI score0.00318EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/12/12 6:57 a.m.4 views

SUSE CVE-2024-54131

The Kolide Agent aka: Launcher is the lightweight agent designed to work with Kolide's service. An implementation bug in the Kolide Agent known as launcher allows for local privilege escalation to the SYSTEM user on Windows 10 and 11. The bug was introduced in version 1.5.3 when launcher started...

7.3CVSS7.2AI score0.00177EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.3 views

SUSE CVE-2019-1010083

The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed version is: 1. NOTE: this may overlap CVE-2018-1000656...

7.5CVSS6.3AI score0.01884EPSS
Exploits1References5
PyPA
PyPA
added 2019/07/17 2:15 p.m.7 views

PYSEC-2019-179

The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed version is: 1. NOTE: this may overlap CVE-2018-1000656...

7.5CVSS6.9AI score0.03855EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder