Lucene search
K

154 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/15 12:0 a.m.2 views

Debian dla-4302 : node-sha.js - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4302 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4302-1 [email protected] https://www.debian.org/lts/security/...

9.1CVSS6AI score0.00651EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2025/09/05 9:16 a.m.9 views

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding.This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.3CVSS6.9AI score0.00183EPSS
Exploits0References1
NVD
NVD
added 2025/09/03 9:15 a.m.18 views

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.3CVSS0.00183EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/09/03 8:48 a.m.6 views

CVE-2024-13065

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.3CVSS5.8AI score0.00183EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/03 8:48 a.m.4 views

CVE-2024-13065 Business Logic Error in Akinsoft's MyRezzta

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.3CVSS5.8AI score0.00183EPSS
Exploits0References2
CVE
CVE
added 2025/09/03 8:48 a.m.15 views

CVE-2024-13065

CVE-2024-13065 concerns Akinsoft MyRezzta, where improper enforcement of behavioral workflow leads to uncontrolled resource consumption and input data manipulation. Affected software: MyRezzta versions s2.02.02 through before v2.05.01. Documented impact is described as CAPEC-125 Flooding. Remedia...

6.3CVSS5.8AI score0.00183EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/03 8:48 a.m.11 views

CVE-2024-13065 Business Logic Error in Akinsoft's MyRezzta

Improper Enforcement of Behavioral Workflow, Uncontrolled Resource Consumption vulnerability in Akinsoft MyRezzta allows Input Data Manipulation, CAPEC - 125 - Flooding. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.3CVSS0.00183EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/02 11:28 p.m.3 views

SUSE CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

5.3CVSS5.7AI score0.00417EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/09/02 5:22 p.m.3 views

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of us...

6.9CVSS6.4AI score0.00417EPSS
Exploits0References5
NVD
NVD
added 2025/09/01 5:15 p.m.5 views

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS0.00417EPSS
Exploits0References7
OSV
OSV
added 2025/09/01 5:15 p.m.3 views

DEBIAN-CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS5.3AI score0.00417EPSS
Exploits0References1
OSV
OSV
added 2025/09/01 5:15 p.m.4 views

UBUNTU-CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS5.8AI score0.00417EPSS
Exploits0References5
CVE
CVE
added 2025/09/01 4:43 p.m.28 views

CVE-2025-9375

CVE-2025-9375 is an XML Injection vulnerability in the Python package xmltodict. It affects versions from 0.14.2 up to (but not including) 0.15.1, allowing input data manipulation. The issue’s root cause relates to improper handling of XML input, enabling manipulation of input data through crafte...

6.9CVSS5.7AI score0.00417EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/09/01 4:43 p.m.1 views

CVE-2025-9375 xmltodict 0.14.2 - XML Injection

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS5.7AI score0.00417EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/09/01 4:43 p.m.3 views

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS5.2AI score0.00417EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/01 4:43 p.m.10 views

CVE-2025-9375 xmltodict 0.14.2 - XML Injection

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

6.9CVSS0.00417EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.2 views

PT-2025-35498

Name of the Vulnerable Software and Affected Versions: xmltodict version 0.14.2 Description: An XML Injection vulnerability exists in xmltodict, allowing for Input Data Manipulation. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

6.9CVSS6.4AI score0.00417EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2025/08/21 11:23 p.m.2 views

SUSE CVE-2025-9287

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9CVSS7AI score0.0047EPSS
Exploits1References3
NVD
NVD
added 2025/08/20 10:15 p.m.7 views

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

9.1CVSS0.00651EPSS
Exploits2References4
NVD
NVD
added 2025/08/20 10:15 p.m.10 views

CVE-2025-9287

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9.1CVSS0.0047EPSS
Exploits1References3
Rows per page
Query Builder