Lucene search
K

7 matches found

Rockylinux
Rockylinux
added 2026/02/11 9:10 a.m.8 views

php:8.2 security update

An update is available for module.php, module.php-pear, module.php-pecl-apcu, php-pecl-rrd, module.php-pecl-xdebug3, php, php-pear, php-pecl-zip, module.php-pecl-zip, module.php-pecl-rrd, php-pecl-apcu, php-pecl-xdebug3, module.libzip, libzip. This update affects Rocky Linux 8. A Common...

9.8CVSS7.3AI score0.02286EPSS
Exploits5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-0004

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.0085EPSS
Exploits1References12
OSV
OSV
added 2025/03/07 3:27 p.m.3 views

OESA-2025-1250 python-aiohttp security update

Async http client/server framework asyncio. Security Fixes: aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP parser in AIOHTTP has numerous problems with header parsing, which could lead to request smuggling. This parser is only used when AIOHTTPNOEXTENSION...

7.5CVSS6.5AI score0.76875EPSS
Exploits18References7
Ubuntu
Ubuntu
added 2024/09/24 3:4 p.m.16 views

USN-7031-2: Puma vulnerability

USN-7031-1 fixed CVE-2024-45614 in Puma for Ubuntu 24.04 LTS. This update fixes the CVE for Ubuntu 22.04 LTS and Ubuntu 20.04 LTS. Original advisory details: It was discovered that Puma incorrectly handled parsing certain headers. A remote attacker could possibly use this issue to overwrite heade...

5.4CVSS6.5AI score0.00646EPSS
Exploits0
OSV
OSV
added 2024/04/12 8:45 p.m.11 views

MGASA-2024-0123 Updated ruby-rack packages fix security vulnerabilities

Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability ReDos 2nd degree polynomial. CVE-2024-25126 Carefully crafted Range headers can cause a server to respond with an unexpectedly large...

7.5CVSS6.5AI score0.35376EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/10/06 12:0 a.m.13 views

PT-2023-8839 · Aiohttp +5 · Aiohttp +5

Name of the Vulnerable Software and Affected Versions: aiohttp versions prior to 3.8.6 Description: The HTTP parser in aiohttp has numerous problems with header parsing, which could lead to request smuggling. This issue is related to the handling of Content-Length values, improper handling of NUL...

7.8CVSS6.2AI score0.76875EPSS
Exploits21References89
Vulnrichment
Vulnrichment
added 2022/12/05 12:0 a.m.6 views

CVE-2022-35256

The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fields that are not terminated with CLRF. This may result in HTTP Request Smuggling...

7.1AI score0.02587EPSS
Exploits1References3
Rows per page
Query Builder