Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/03/18 4:17 p.m.1 views

GHSA-QPXP-75PX-XJCP pypdf has inefficient decoding of array-based streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes and/or large memory usage. This requires accessing an array-based stream with lots of entries. Patches This has been fixed in pypdf==6.9.1. Workarounds If you cannot upgrade yet, consider applying the...

5.1CVSS5.7AI score0.00014EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2026/03/18 4:17 p.m.3 views

pypdf has inefficient decoding of array-based streams

Impact An attacker who uses this vulnerability can craft a PDF which leads to long runtimes and/or large memory usage. This requires accessing an array-based stream with lots of entries. Patches This has been fixed in pypdf==6.9.1. Workarounds If you cannot upgrade yet, consider applying the...

6.5CVSS5.7AI score0.00014EPSS
Exploits0References5Affected Software1
Veracode
Veracodeadded 2026/03/07 5:12 a.m.1 views

Inefficient Decoding

pypdf is vulnerable to inefficient decoding of ASCIIHexDecode streams. The vulnerability is due to an attacker being able to craft a PDF which leads to long runtimes, where accessing a stream uses the /ASCIIHexDecode filter and can be exploited by attackers to cause a denial of service...

6.9CVSS5.2AI score0.00017EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/03/06 6:46 a.m.28 views

CVE-2026-28804 pypdf: Inefficient decoding of ASCIIHexDecode streams

pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires accessing a stream which uses the /ASCIIHexDecode filter. This issue has been patched in version 6.7.5...

6.9CVSS0.00017EPSS
Exploits0References4
Rockylinux
Rockylinuxadded 2025/10/04 12:11 a.m.2 views

gnutls security update

An update is available for gnutls. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnutls packages provide the GNU Transport Layer Security GnuTLS library,...

5.3CVSS7.1AI score0.01227EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/02/10 3:28 p.m.12 views

CVE-2024-12133 Libtasn1: inefficient der decoding in libtasn1 leading to potential remote dos

A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate,...

5.3CVSS5AI score0.00343EPSS
Exploits0References9
CVE
CVEadded 2025/02/10 3:28 p.m.202 views

CVE-2024-12133

CVE-2024-12133 affects libtasn1 and causes inefficient DER/SEQUENCE OF handling, enabling remote DoS via crafted certificates. Connected advisories confirm affected package libtasn1 and provide mitigations: update to patched libtasn1 versions (e.g., 4.19.x+/4.10.x+ as per distro advisories). If e...

5.3CVSS4.9AI score0.00343EPSS
Exploits0References14
Rows per page
Query Builder