Lucene search
+L

109 matches found

CNNVD
CNNVD
added 2025/05/09 12:0 a.m.5 views

libSQL 安全漏洞

libSQL is a branch of SQLite open-sourced by Turso Database. A security vulnerability exists in libSQL version 0.13.0, which stems from a potential crash when entering a non-valid UTF-8...

2.9CVSS6.5AI score0.00216EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/05/09 12:0 a.m.20 views

CVE-2025-47736

dialect/mod.rs in the libsql-sqlite3-parser crate through 0.13.0 before 14f422a for Rust can crash if the input is not valid UTF-8...

2.9CVSS0.00216EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/04 12:3 a.m.19 views

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS7AI score0.00142EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/02 9:30 p.m.17 views

obfstr Type Confusion vulnerability

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS6.8AI score0.00142EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/02 9:30 p.m.8 views

GHSA-V2P5-Q653-9J99 obfstr Type Confusion vulnerability

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS6.7AI score0.00142EPSS
Exploits0References4
NVD
NVD
added 2025/05/02 8:15 p.m.23 views

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS0.00142EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.13 views

PT-2025-18914 · Obfstr · Obfstr

Name of the Vulnerable Software and Affected Versions: obfstr crate versions prior to 0.4.4 Description: The issue arises from the obfstr! argument type not being restricted to string slices, resulting in invalid UTF-8 conversion that produces an invalid value. Recommendations: For versions prior...

2.9CVSS6.3AI score0.00142EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/05/02 12:0 a.m.6 views

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS4AI score0.00142EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/02 12:0 a.m.16 views

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS0.00142EPSS
Exploits0References2
CVE
CVE
added 2025/05/02 12:0 a.m.59 views

CVE-2024-58253

CVE-2024-58253 affects the Rust crate obfstr prior to 0.4.4. The issue is that the obfstr! argument type is not restricted to string slices, which can cause an invalid UTF-8 conversion and produce an invalid value. The vulnerability is tied to versions before 0.4.4; updating to 0.4.4 or later res...

2.9CVSS4AI score0.00142EPSS
Exploits0References2
OSV
OSV
added 2025/05/02 12:0 a.m.6 views

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

2.9CVSS6.7AI score0.00142EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/03/26 9:9 a.m.13 views

CVE-2025-27837

A flaw was found in Artifex Ghostscript. This vulnerability allows potential access to arbitrary files through a truncated path when invalid UTF-8 characters are used. The affected code areas are within base/gpmswin.c and base/winrtsup.cpp. system. Mitigation Mitigation for this issue is either n...

5.3CVSS7.2AI score0.00586EPSS
Exploits0References4
OSV
OSV
added 2025/03/25 9:15 p.m.9 views

CVE-2025-27837

An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gpmswin.c and base/winrtsup.cpp...

9.8CVSS6.7AI score
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/03/25 12:0 a.m.10 views

CVE-2025-27837

An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gpmswin.c and base/winrtsup.cpp...

9.8CVSS7.4AI score0.00586EPSS
Exploits0
OSV
OSV
added 2025/03/19 12:0 a.m.3 views

UBUNTU-CVE-2025-27837

Access to arbitrary files through truncated path with invalid UTF-8...

9.8CVSS6.2AI score0.00586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-2059

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The stringpreputf8toucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other...

7.5CVSS7.5AI score0.03185EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/08/13 3:39 p.m.36 views

USN-6958-1: Libcroco vulnerabilities

It was discovered that Libcroco was incorrectly accessing data structures when reading bytes from memory, which could cause a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. CVE-2017-7960 It was discovered th...

7.1CVSS6.8AI score0.12996EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.21 views

Ubuntu 14.04 LTS / 18.04 LTS / 20.04 LTS : Libcroco vulnerabilities (USN-6958-1)

The remote Ubuntu 14.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6958-1 advisory. It was discovered that Libcroco was incorrectly accessing data structures when reading bytes from memory, which could cause a hea...

7.1CVSS6.9AI score0.12996EPSS
Exploits7References5
OSV
OSV
added 2024/04/04 12:33 a.m.22 views

GHSA-WMXC-V39R-P9WF Temporal Server Denial of Service

Denial of Service in Temporal Server prior to version 1.20.5, 1.21.6, and 1.22.7 allows an authenticated user who has permissions to interact with workflows and has crafted an invalid UTF-8 string for submission to potentially cause a crashloop. If left unchecked, the task containing the invalid...

4.4CVSS4.5AI score0.00487EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/04/04 12:33 a.m.31 views

Temporal Server Denial of Service

Denial of Service in Temporal Server prior to version 1.20.5, 1.21.6, and 1.22.7 allows an authenticated user who has permissions to interact with workflows and has crafted an invalid UTF-8 string for submission to potentially cause a crashloop. If left unchecked, the task containing the invalid...

4.4CVSS4.5AI score0.00487EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder