Lucene search
K

5 matches found

OSV
OSV
added 2026/03/06 9:19 p.m.4 views

CVE-2026-30242 Plane: SSRF via Incomplete IP Validation in Webhook URL Serializer

Plane is an an open-source project management tool. Prior to version 1.2.3, the webhook URL validation in plane/app/serializers/webhook.py only checks ip.isloopback, allowing attackers with workspace ADMIN role to create webhooks pointing to private/internal network addresses 10.x.x.x, 172.16.x.x...

8.5CVSS5.8AI score0.00284EPSS
Exploits0References4
OSV
OSV
added 2019/08/16 2:15 a.m.1 views

DEBIAN-CVE-2019-15098

drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor...

4.6CVSS6.7AI score0.00721EPSS
Exploits0References1
OSV
OSV
added 2019/08/16 2:15 a.m.1 views

UBUNTU-CVE-2019-15099

drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor...

7.5CVSS6.7AI score0.03771EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2019/08/16 1:15 a.m.34 views

CVE-2019-15098

drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor...

4.9CVSS6.6AI score0.00721EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2009/03/18 2:0 a.m.16 views

CVE-2009-0939

Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which has unknown impact and attack vectors related to "Spec conformance," as demonstrated using 192.168.0...

10CVSS5.9AI score0.0205EPSS
Exploits0References1
Rows per page
Query Builder