Lucene search
+L

197 matches found

Prion
Prion
added 2022/09/06 6:15 p.m.21 views

Input validation

A improper verification of source of a communication channel in Fortinet FortiOS with IPS engine version 7.201 through 7.214, 7.001 through 7.113, 6.001 through 6.121, 5.001 through 5.258 and before 4.086 allows a remote and unauthenticated attacker to trigger the sending of "blocked page" HTML...

5CVSS7.5AI score0.01265EPSS
Exploits0References1Affected Software1
Kitploit
Kitploit
added 2022/06/23 12:30 p.m.144 views

WEF - Wi-Fi Exploitation Framework

A fully offensive framework to the 802.11 networks and protocols with different types of attacks for WPA and WEP, automated hash cracking, bluetooth hacking and much more. I recommend you my alfa adapter: Alfa AWUS036ACM , which works really great with both, 2.4 and 5 Ghz Tested and supported in...

7.1AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/14 11:32 a.m.61 views

CVE-2019-9512

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS2.2AI score0.83433EPSS
Exploits1References8
CNVD
CNVD
added 2022/04/01 12:0 a.m.22 views

SAP Mobile Platform SDK Resource Management Error Vulnerability

SAP Mobile Platform is a user-friendly connectivity platform for building and deploying mobile apps.SAP NetWeaver is an integrated service-oriented application platform from SAP. The platform provides a development and runtime environment for SAP applications. A resource management error...

7.5CVSS7.5AI score0.02425EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/04/27 11:49 a.m.5 views

nss: TLS 1.3 CCS flood remote DoS Attack

A flaw was found in the way NSS handled CCS ChangeCipherSpec messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this vulnerability is to system availability...

7.5CVSS7.3AI score0.03901EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/09 4:40 a.m.44 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Netty

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Netty. Vulnerability Details CVEID: CVE-2019-16869 DESCRIPTION: Netty is vulnerable to HTTP request smuggling, caused by a flaw when handling unusual whitespaces before the colon in HTTP headers. By sending a...

7.8CVSS0.9AI score0.87806EPSS
Exploits2Affected Software1
Hacker One
Hacker One
added 2020/08/30 3:13 p.m.409 views

CS Money: Pixel Flood Attack leads to Application level DoS

Summary: Hello Team, I had gone through your policy and I saw that DoS is out of scope but I am not sure about Application level DoS. The another reason to report this attack because it affects real customers who want to chat with your support team. I had tested this with two accounts 1. From...

6.7AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/29 8:59 a.m.51 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Go

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Go. Vulnerability Details CVEID: CVE-2020-9283 DESCRIPTION: Golang golang.org/x/crypto is vulnerable to a denial of service, caused by an error during signature verification in the golang.org/x/crypto/ssh...

7.8CVSS1AI score0.83433EPSS
Exploits8Affected Software1
RedHat Linux
RedHat Linux
added 2020/07/29 6:21 a.m.6 views

HTTP/2: flood using SETTINGS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using SETTINGS frames and queuing of SETTINGS ACK frames, a flood could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.87806EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/06/15 4:17 p.m.7 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2020/04/14 1:4 p.m.5 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2020/04/10 12:0 a.m.7 views

The vulnerability of the embedded software in Balt-System NC series numerical control systems is related to insufficient resources, which allows a malicious actor to cause malfunctions in the system’s operation.

The vulnerability of the embedded software in Balt-System NC series numerical control systems is related to insufficient resources. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending a large number of specially crafted network packets SYN flood attack...

3.5CVSS5.5AI score
Exploits0Affected Software10
Hacker One
Hacker One
added 2020/04/07 11:2 a.m.265 views

Node.js third-party modules: Pixel flood attack cause the javascript heap out of memory

I would like to report Pixel flood attack in jimp It allows flooding the memory and causing DoS by uploading a crafted image 5kb image, and the Jimp module will tries to allocate 4128062500 pixels into memory. Module module name: jimp version: An image processing library for Node written entirely...

4.3CVSS0.4AI score0.01077EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/03/26 3:46 p.m.9 views

HTTP/2: flood using HEADERS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RSTSTREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.82813EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/03/26 3:46 p.m.11 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/19 6:41 p.m.55 views

Security Bulletin: IBM Cloud Transformation Advisor is affected by vulnerabilities in WebSphere Application Server Liberty (CVE-2019-9515, CVE-2019-9518, CVE-2019-9517, CVE-2019-9512, CVE-2019-9514, CVE-2019-9513)

Summary IBM Cloud Transformation Advisor has addressed following vulnerabilities: CVE-2019-9515, CVE-2019-9518, CVE-2019-9517, CVE-2019-9512, CVE-2019-9514, CVE-2019-9513 Vulnerability Details CVEID: CVE-2019-9515 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by a...

7.8CVSS0.6AI score0.87806EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2020/03/05 12:53 p.m.4 views

HTTP/2: flood using HEADERS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RSTSTREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.82813EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/03/05 12:53 p.m.4 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2020/02/04 7:25 p.m.5 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2019/12/19 5:37 p.m.6 views

HTTP/2: flood using SETTINGS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using SETTINGS frames and queuing of SETTINGS ACK frames, a flood could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.87806EPSS
Exploits0References7
Rows per page
Query Builder