Lucene search
K

16 matches found

OSV
OSV
added 2026/03/20 9:5 a.m.4 views

BIT-CEPH-2020-12059

An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering a NULL pointer exception...

7.5CVSS7.1AI score0.02654EPSS
Exploits0References6
OSV
OSV
added 2026/03/15 5:52 a.m.6 views

OESA-2026-1542 ceph security update

Ceph is a massively scalable, open-source, distributed storage system that runs on commodity hardware and delivers object, block and file system storage. Security Fixes: Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument...

7.5CVSS5.7AI score0.00399EPSS
Exploits1References2
OSV
OSV
added 2026/03/05 10:16 p.m.4 views

CVE-2026-28394

OpenClaw versions prior to 2026.2.15 contain a denial of service vulnerability in the webfetch tool that allows attackers to crash the Gateway process through memory exhaustion by parsing oversized or deeply nested HTML responses. Remote attackers can social-engineer users into fetching malicious...

6.5CVSS5.8AI score
Exploits0References3
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.7 views

OpenClaw 安全漏洞

OpenClaw is a gateway tool for network data acquisition. A denial of service vulnerability exists in OpenClaw. An attacker can exploit this vulnerability to crash the gateway process by parsing oversized or deeply nested HTML responses to exhaust memory and trick users into visiting a malicious U...

6.9CVSS5.8AI score0.00388EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.12 views

PT-2026-23523

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.15 Description The web fetch tool within OpenClaw can cause a denial of service by crashing the Gateway process due to memory exhaustion. This occurs when parsing oversized or deeply nested HTML responses...

6.9CVSS5.8AI score0.00388EPSS
Exploits0References11
OSV
OSV
added 2025/11/12 7:15 p.m.4 views

UBUNTU-CVE-2024-47866

Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument x-amz-copy-source to put an object and specifying an empty string as its content leads to the RGW daemon crashing, resulting in a DoS attack. As of time of publication, no...

7.5CVSS5.7AI score0.00399EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-31659

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:59 a.m.7 views

CVE-2024-3052

Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is required to recover the gateway...

7.5CVSS6.9AI score0.00515EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/04/26 12:0 a.m.4 views

PT-2024-23447 · Silabs.Com +1 · Z/Ip Gateway Sdk

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves sending malformed S2 Nonce Get command classes to crash the gateway, requiring a hard reset for recovery. No information is provided...

7.5CVSS7.1AI score0.00515EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.5 views

SUSE CVE-2020-12059

An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering a NULL pointer exception...

7.5CVSS7AI score0.02654EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/08/18 12:0 a.m.5 views

Hyperledger Fabric 输入验证错误漏洞

Hyperledger Fabric is an enterprise licensed distributed ledger framework. It is used to develop solutions and applications. An input validation error vulnerability exists in Hyperledger Fabric gateway versions prior to 2.4.6, which stems from the possibility of crashing a peer node if the gatewa...

7CVSS6AI score0.00912EPSS
Exploits0References6
OSV
OSV
added 2022/06/24 8:15 a.m.3 views

CVE-2022-31804

The CODESYS Gateway Server V2 does not verifiy that the size of a request is within expected limits. An unauthenticated attacker may allocate an arbitrary amount of memory, which may lead to a crash of the Gateway due to an out-of-memory condition...

7.5CVSS7.4AI score0.01027EPSS
Exploits0References1
OSV
OSV
added 2020/04/22 1:15 p.m.1 views

DEBIAN-CVE-2020-12059

An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering a NULL pointer exception...

7.5CVSS7.3AI score0.02654EPSS
Exploits0References1
OSV
OSV
added 2017/04/24 7:59 p.m.5 views

CVE-2017-3500

Vulnerability in the Primavera Gateway component of Oracle Primavera Products Suite subcomponent: Primavera Desktop Integration. Supported versions that are affected are 1.0, 1.1, 14.2, 15.1, 15.2, 16.1 and 16.2. Easily "exploitable" vulnerability allows high privileged attacker with network acce...

8.7CVSS5.8AI score0.02EPSS
Exploits0References3
securityvulns
securityvulns
added 2003/06/21 12:0 a.m.32 views

Avaya Cajun DoS

Negative number sent to TCP/4000 of the gateway causes it to crash...

2.1AI score
Exploits0References1
securityvulns
securityvulns
added 2002/07/05 12:0 a.m.32 views

Worldspan DoS

Vendor: Worldspan www.worldspan.com Software: Worldspan for Windows 4.1 Gateway Problem: Invalid packets sent to gateway crash system Fix: No response from vendor. All systems should be firewalled from outsiders but there is no protection from insiders. Overview: Worldspan is one of the leading...

0.2AI score
Exploits0
Rows per page
Query Builder