Lucene search
K

4 matches found

Amazon
Amazon
added 2025/06/02 12:0 a.m.13 views

Important: runfinch-finch

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS7.6AI score0.00778EPSS
Exploits0
OSV
OSV
added 2025/04/16 6:16 p.m.7 views

AZL-60573 CVE-2025-22872 affecting package kube-vip-cloud-provider for versions less than 0.0.10-4

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

6.5CVSS6.6AI score0.00478EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.4 views

AZL-60601 CVE-2025-22872 affecting package sriov-network-device-plugin for versions less than 3.6.2-9

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

6.5CVSS6.6AI score0.00478EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.7 views

AZL-60550 CVE-2025-22872 affecting package prometheus-adapter for versions less than 0.12.0-3

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

6.5CVSS6.6AI score0.00478EPSS
Exploits0References1
Rows per page
Query Builder