Lucene search
K

16 matches found

NVD
NVD
added 8 hours ago7 views

CVE-2026-58226

Inefficient Algorithmic Complexity vulnerability in elixir-mint hpax allows unauthenticated denial-of-service via unbounded HPACK integer decoding. hpax decodes HPACK variable-length integers with no upper bound on the decoded value or the number of continuation octets...

8.7CVSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 11 hours ago3 views

CVE-2026-58226

Inefficient Algorithmic Complexity vulnerability in elixir-mint hpax allows unauthenticated denial-of-service via unbounded HPACK integer decoding. hpax decodes HPACK variable-length integers with no upper bound on the decoded value or the number of continuation octets...

8.7CVSS6.1AI score
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 11 hours ago4 views

CVE-2026-58226 Unauthenticated denial-of-service via unbounded HPACK integer decoding in hpax

Inefficient Algorithmic Complexity vulnerability in elixir-mint hpax allows unauthenticated denial-of-service via unbounded HPACK integer decoding. hpax decodes HPACK variable-length integers with no upper bound on the decoded value or the number of continuation octets...

8.7CVSS6.1AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/02 2:15 p.m.11 views

CVE-2026-49754

Allocation of Resources Without Limits or Throttling vulnerability in elixir-mint Mint allows attacker-controlled HTTP/2 servers to exhaust memory in a Mint client HTTP/2 CONTINUATION flood. When Mint's HTTP/2 receive path observes a HEADERS frame without the ENDHEADERS flag, the unparsed...

8.2CVSS5.9AI score0.00384EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-2717

Malware in sbrugna...

7.8CVSS7.9AI score0.00137EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1634

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.01119EPSS
Exploits0References5
NVD
NVD
added 2025/08/08 1:15 a.m.10 views

CVE-2025-54793

Astro is a web framework for content-driven websites. In versions 5.2.0 through 5.12.7, there is an Open Redirect vulnerability in the trailing slash redirection logic when handling paths with double slashes. This allows an attacker to redirect users to arbitrary external domains by crafting URLs...

6.9CVSS0.00572EPSS
Exploits0References2
Amazon
Amazon
added 2025/04/29 12:0 a.m.7 views

Medium: docker

Issue Overview: Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB...

7.5CVSS6.8AI score0.01544EPSS
Exploits0
OSV
OSV
added 2023/05/18 5:28 p.m.13 views

GHSA-W3F6-PC54-GFW7 swift-nio-http2 vulnerable to denial of service via mishandled HPACK variable length integer encoding

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HPACK-encoded header block. This attack affects all swift-nio-http2 versions from 1.0.0 to 1.19.1. It is fixed in 1.19.2 and later releases. There are a number of...

7.5CVSS7.4AI score0.01119EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.4 views

SUSE CVE-2018-1000223

soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility...

7CVSS7.8AI score0.02426EPSS
Exploits1References7
Prion
Prion
added 2022/10/14 3:15 p.m.22 views

Design/Logic Flaw

Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB...

5CVSS7.4AI score0.01544EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2022/02/09 11:15 p.m.22 views

CVE-2022-24667

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HPACK-encoded header block. This attack affects all swift-nio-http2 versions from 1.0.0 to 1.19.1. There are a number of implementation errors in the parsing of...

7.5CVSS0.01119EPSS
Exploits0References1
CVE
CVE
added 2022/02/09 10:5 p.m.83 views

CVE-2022-24667

What is affected: swift-nio-http2. Vulnerability: HPACK header block parsing bugs allow a maliciously crafted header block to crash the server, causing denial of service. Versions affected: 1.0.0 through 1.19.1. Root cause: multiple implementation errors in parsing HPACK-encoded headers in HTTP/2...

7.5CVSS7.5AI score0.01119EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/09 10:5 p.m.30 views

CVE-2022-24667

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HPACK-encoded header block. This attack affects all swift-nio-http2 versions from 1.0.0 to 1.19.1. There are a number of implementation errors in the parsing of...

7.7AI score0.01119EPSS
Exploits0References1
OSV
OSV
added 2019/12/11 12:17 a.m.3 views

USN-4221-1 libpcap vulnerability

It was discovered that libpcap did not properly validate PHB headers in some situations. An attacker could use this to cause a denial of service memory exhaustion...

5.3CVSS6.6AI score0.02834EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/07/25 4:33 p.m.16 views

CVE-2019-2272

Buffer overflow can occur in display function due to lack of validation of header block size set by user. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909...

7.8AI score0.00197EPSS
Exploits0References1
Rows per page
Query Builder