Lucene search
K

899 matches found

Nuclei
Nuclei
added yesterday42 views

Graphite <=1.1.5 - Server-Side Request Forgery

Graphite's sendemail in graphite-web/webapp/graphite/composer/views.py in versions up to 1.1.5 is vulnerable to server-side request forgery SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is...

7.5CVSS6.7AI score0.16948EPSS
Exploits1References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in Chromium

The use of Graphite with free in Google Chrome before version 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape through a crafted HTML page. Chromium security severity: High...

8.3CVSS7.3AI score0.00251EPSS
Exploits0References3
OSV
OSV
added 2026/06/22 8:46 a.m.2 views

SUSE-SU-2026:2477-1 Security update for graphite2

This update for graphite2 fixes the following issue: - CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References3
OSV
OSV
added 2026/06/22 7:44 a.m.3 views

SUSE-SU-2026:2474-1 Security update for graphite2

This update for graphite2 fixes the following issue - CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References3
OSV
OSV
added 2026/06/20 6:50 a.m.3 views

OPENSUSE-SU-2026:21124-1 Security update for graphite2

This update for graphite2 fixes the following issue - CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References2
OSV
OSV
added 2026/06/20 6:50 a.m.2 views

SUSE-SU-2026:22225-1 Security update for graphite2

This update for graphite2 fixes the following issue - CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References3
OSV
OSV
added 2026/06/09 12:14 p.m.5 views

SUSE-SU-2026:22063-1 Security update for graphite2

This update for graphite2 fixes the following issue - CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733...

7.3CVSS5.3AI score0.00112EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/06 6:42 a.m.15 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.5AI score0.00112EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/06 2:45 a.m.10 views

SUSE CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.1CVSS5.5AI score0.00112EPSS
Exploits0References10
NVD
NVD
added 2026/06/05 4:17 a.m.14 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS0.00112EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/05 2:14 a.m.10 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.4AI score0.00112EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/05 2:14 a.m.13 views

EUVD-2026-34784

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/05 2:14 a.m.18 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.8AI score0.00112EPSS
Exploits0References3
CVE
CVE
added 2026/06/05 2:14 a.m.52 views

CVE-2026-50593

Graphite 1.3.15 changes and the commit.

7.3CVSS5.8AI score0.00112EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/05 2:14 a.m.10 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.4AI score0.00112EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/05 2:14 a.m.45 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS0.00112EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.22 views

PT-2026-46902

Name of the Vulnerable Software and Affected Versions Graphite versions prior to 1.3.15 Description An integer underflow occurs via Graphite actions because the slotat function fails to ensure that an offset remains within the allowed slot-map range, leading to an out-of-bounds write...

7.3CVSS5.4AI score0.00112EPSS
Exploits0References32
CNNVD
CNNVD
added 2026/06/05 12:0 a.m.13 views

Graphite-Web 数字错误漏洞

Graphite-Web is a highly scalable real-time plotting system developed by the Graphite Project. Versions of Graphite-Web prior to 1.3.15 contained a numerical error vulnerability. This vulnerability stemmed from integer underflow and out-of-bounds writes, as slotat did not ensure that the offset w...

7.3CVSS5.3AI score0.00112EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-50593

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within...

7.3CVSS6.1AI score0.00112EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/05/18 1:27 p.m.26 views

Graphite Has a Pickle Deserialization Vulnerability

Impact Type of vulnerability: Insecure Deserialization via Python's pickle module. Who is impacted: Users of Graphite graph database engine versions before 0.2 who load database files from untrusted or third-party sources. An attacker could craft a malicious database file that executes arbitrary...

6AI score
Exploits0References3Affected Software1
Rows per page
Query Builder