Lucene search
K

5 matches found

PyPA
PyPA
added 2026/06/05 11:16 p.m.6 views

PYSEC-0000-CVE-2026-45409

Internationalized Domain Names in Applications IDNA for Python provides support for Internationalized Domain Names in Applications IDNA and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as "\u0660" N or "\u30fb" N + "\u6f22" utilize the validcontexto function pri...

6.9CVSS5.2AI score0.00408EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2025/11/10 9:4 p.m.2 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection via the validation process which use XML Validator with not configured securely. An attacker can access sensitive information from internal files or external resources by submitting specially crafted XM...

8.7CVSS7.2AI score0.00329EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/08/26 3:27 p.m.5 views

ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash

Summary Passing a geometry string containing only a colon ":" to montage -geometry leads GetGeometry to set width/height to 0. Later, ThumbnailImage divides by these zero dimensions, triggering a crash SIGFPE/abort, resulting in a denial of service. Details Root Cause 1. montage -geometry ":"...

7.5CVSS6.2AI score0.00851EPSS
Exploits1References8Affected Software18
OSV
OSV
added 2024/09/18 7:12 a.m.19 views

CVE-2024-46745 Input: uinput - reject requests with unreasonable number of slots

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - reject requests with unreasonable number of slots When exercising uinput interface syzkaller may try setting up device with a really large number of slots, which causes memory allocation failure in inputmtinitslot...

5.5CVSS6.2AI score0.00283EPSS
Exploits0References13
NVD
NVD
added 2016/11/17 5:59 a.m.16 views

CVE-2016-9372

In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. This was addressed in plugins/profinet/packet-pn-rtc-one.c by rejecting input with too many I/O objects...

5.9CVSS5.8AI score0.0209EPSS
Exploits0References5
Rows per page
Query Builder