Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-15223

Malware in sbrugna...

6.5CVSS6.6AI score0.01119EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-0403

Malware in sbrugna...

7.8CVSS6.4AI score0.02542EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-31824

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00905EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-53416

Malicious code in bioql PyPI...

8.1CVSS7AI score0.05614EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.6 views

CVE-2023-28099

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.9 and 3.2.6, if dsisinlist is used with an invalid IP address string NULL is illegal input, OpenSIPS will attempt to print a string from a random address stack garbage, which could lead to a crash. All user...

7.5CVSS6.8AI score0.00905EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/15 10:16 p.m.10 views

CVE-2023-28099 OpenSIPS has vulnerability in the ds_is_in_list() function

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.9 and 3.2.6, if dsisinlist is used with an invalid IP address string NULL is illegal input, OpenSIPS will attempt to print a string from a random address stack garbage, which could lead to a crash. All user...

5.9CVSS7.5AI score0.00905EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/10/18 9:6 a.m.4 views

nodejs: DNS rebinding in --inspect via invalid IP addresses

A vulnerability was found in NodeJS, where the IsAllowedHost check can be easily bypassed because IsIPAddress does not properly check if an IP address is invalid or not. When an invalid IPv4 address is provided for instance, 10.0.2.555 is provided, browsers such as Firefox will make DNS requests ...

8.1CVSS7.7AI score0.05614EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/13 9:59 a.m.5 views

nodejs: DNS rebinding in --inspect via invalid IP addresses

A vulnerability was found in NodeJS, where the IsAllowedHost check can be easily bypassed because IsIPAddress does not properly check if an IP address is invalid or not. When an invalid IPv4 address is provided for instance, 10.0.2.555 is provided, browsers such as Firefox will make DNS requests ...

8.1CVSS7.7AI score0.05614EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/13 9:48 a.m.2 views

nodejs: DNS rebinding in --inspect via invalid IP addresses

A vulnerability was found in NodeJS, where the IsAllowedHost check can be easily bypassed because IsIPAddress does not properly check if an IP address is invalid or not. When an invalid IPv4 address is provided for instance, 10.0.2.555 is provided, browsers such as Firefox will make DNS requests ...

8.1CVSS7.7AI score0.05614EPSS
Exploits0References5
Citrix
Citrix
added 2021/01/07 12:0 a.m.7 views

Unable to use TLS/SSL LDAP Auth after ADM upgrade to latest build 13.0-71.40 - TLS Handshake fails with "Unknown CA"

After upgrading ADM to latest build 13.0-71.40 External Authentication fails when LDAP Server is configured using Security type SSL and TLS. When retrieving Attributes on LDAP Server config from ADM GUI throw this error :: "LDAP IP Address or Port Number provided is invalid." Network trace shows...

7.1AI score
Exploits0
NVD
NVD
added 2015/03/09 2:59 p.m.17 views

CVE-2015-2096

Use-after-free vulnerability in the Connect function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control in WebGate eDVR Manager allows remote attackers to execute arbitrary code via an invalid IP address and a page reload...

6.8CVSS7.6AI score0.02523EPSS
Exploits0References2
Prion
Prion
added 2015/03/09 2:59 p.m.18 views

Design/Logic Flaw

Use-after-free vulnerability in the Connect function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control in WebGate eDVR Manager allows remote attackers to execute arbitrary code via an invalid IP address and a page reload...

6.8CVSS8.2AI score0.02523EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/03/09 2:0 p.m.24 views

CVE-2015-2096

Use-after-free vulnerability in the Connect function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control in WebGate eDVR Manager allows remote attackers to execute arbitrary code via an invalid IP address and a page reload...

8.9AI score0.02523EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2012/12/05 11:0 a.m.23 views

CVE-2012-6054

The dissectsflow245addresstype function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a denial of service infinite loop via a packet that ...

5CVSS5.2AI score0.02806EPSS
Exploits0
OSV
OSV
added 2007/03/21 7:19 p.m.6 views

CVE-2007-1561

The channel driver in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service crash via a SIP INVITE message with an SDP containing one valid and one invalid IP address...

6.3AI score
Exploits0References16
Rows per page
Query Builder