Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Github Security Blog
Github Security Blogadded 2026/06/15 8:46 p.m.8 views

Netty susceptible to HTTP/2 Reset Attack with different on-the-wire signature

Summary Netty HTTP/2 max header size handling produces attack similar to HTTP/2 Rapid Reset. Details There is a setting in the http2 specification called SETTINGSMAXHEADERLISTSIZE. According to the RFC: “This advisory setting informs a peer of the maximum field section size that the sender is...

6.9CVSS5.3AI score0.00302EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2026/06/12 4:16 p.m.4 views

UBUNTU-CVE-2026-50560

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, Netty HTTP/2 max header size handling produces an attack similar to HTTP/2 Rapid Reset. There is a setting in the http2 specification called...

6.9CVSS5.3AI score0.00302EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletinsadded 2026/03/31 4:18 p.m.11 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining 2.1.1

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.1 Vulnerability Details CVEID:CVE-2026-22732 DESCRIPTION: When applications specify HTTP response headers for servlet applications using Spring...

9.8CVSS6.8AI score0.1865EPSS
Exploits6Affected Software1
CNNVD
CNNVDadded 2026/03/19 12:0 a.m.5 views

Spring Security 安全漏洞

Spring Security is a security framework developed by Spring OpenSource that includes authentication and authorization features. There is a security vulnerability in Spring Security, which occurs when using Spring Security to specify HTTP response headers for servlet applications, and the HTTP...

9.1CVSS7.2AI score0.0048EPSS
Exploits2References2
Positive Technologies
Positive Technologiesadded 2023/08/29 12:0 a.m.6 views

PT-2023-35983 · Git +1 · Libredwg

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Heap-double-free. The crash state involves several functions: bit TV to utf8, json cquote, and json...

6.9AI score
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 4:14 a.m.3 views

SUSE CVE-2019-9777

An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer over-read in the function dxfheaderwrite at headervariablesdxf.spec...

7.5CVSS6.9AI score0.02772EPSS
Exploits1References5
CNVD
CNVDadded 2019/03/14 12:0 a.m.4 views

GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2019-12559)

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dxfheaderwrite' function of the headervariablesdxf.spec file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS7.1AI score0.02772EPSS
Exploits1References1
OSV
OSVadded 2017/05/04 4:59 a.m.3 views

CVE-2017-8773

Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Out of Bounds Write on a Heap Buffer due to improper validation of dwCompressionSize of Microsoft WIM Header WIMHEADERV1PACKED. This vulnerability can be...

9.8CVSS5.9AI score0.02323EPSS
Exploits0References1
Rows per page
Query Builder