321 matches found
IPAddress Infinite Loop vulnerability (Disputed)
An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop...
GHSA-QPHF-W3CQ-JPMX IPAddress Infinite Loop vulnerability (Disputed)
An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop...
CVE-2023-50570
An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop. This is disputed because an infinite loop occurs only for cases in which the developer supplies invalid arguments. The product is not intended to always halt for contrived inputs...
CVE-2023-50570
An issue in the component IPAddressBitsDivision of IPAddress v5.1.0 leads to an infinite loop. This is disputed because an infinite loop occurs only for cases in which the developer supplies invalid arguments. The product is not intended to always halt for contrived inputs...
IPAddress security vulnerability
IPAddress is a Java library for working with IP addresses. A security vulnerability exists in IPAddress version v5.1.0, which stems from a security issue in the component IPAddressBitsDivision that causes an infinite loop...
PT-2023-31593 · Ipaddress · Ipaddress
Name of the Vulnerable Software and Affected Versions: IPAddress version 5.1.0 Description: An issue in the component IPAddressBitsDivision leads to an infinite loop. This issue is disputed as it only occurs when the developer supplies invalid arguments, and the product is not intended to always...
CVE-2023-50570
CVE-2023-50570 affects IPAddress in IPAddress v5.1.0, specifically the IPAddressBitsDivision component. The issue is an infinite loop triggered by certain invalid inputs, but this claim is disputed and the product is not intended to halt for contrived inputs. No concrete exploit details or affect...
PT-2023-9235
Name of the Vulnerable Software and Affected Versions CPython versions prior to 3.12.4 CPython versions prior to 3.13.0a6 Description The issue is related to the "ipaddress" module, which contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as "globally...
NewStart CGSL MAIN 6.06 : python-jinja2 Multiple Vulnerabilities (NS-SA-2023-0137)
The remote NewStart CGSL host, running version MAIN 6.06, has python-jinja2 packages installed that are affected by multiple vulnerabilities: - psutil aka python-psutil through 5.6.5 can have a double free. This occurs because of refcount mishandling within a while or for loop that converts syste...
Fedora: Security Advisory for golang-github-seancfoley-ipaddress (FEDORA-2023-ab43e2ce21)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Medium: python38
Issue Overview: The CryptProtectMemory function in cng.sys aka the Cryptography Next Generation driver in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, an...
Medium: python38
Issue Overview: A flaw was found in python. In Lib/tarfile.py an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because procpax lacks header validation. CVE-2019-20907 A vulnerability was found in the way the ipaddress python module computes hash...
CVE-2022-41763
An issue was discovered in NOKIA AMS 9.7.05. Remote Code Execution exists via the debugger of the ipAddress variable. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the command executed depend on the user that runs the service...
Remote code execution
An issue was discovered in NOKIA AMS 9.7.05. Remote Code Execution exists via the debugger of the ipAddress variable. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the command executed depend on the user that runs the service...
PT-2023-14032 · Nokia · Nokia Ams
Name of the Vulnerable Software and Affected Versions: NOKIA AMS version 9.7.05 Description: An issue exists in the debugger of the ipAddress variable, allowing Remote Code Execution. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the...
CVE-2022-41763
An issue was discovered in NOKIA AMS 9.7.05. Remote Code Execution exists via the debugger of the ipAddress variable. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the command executed depend on the user that runs the service...
Amazon Linux 2 : python-ipaddress (ALAS-2023-2174)
The version of python-ipaddress installed on the remote host is prior to 1.0.16-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2174 advisory. A vulnerability was found in the way the ipaddress python module computes hash values in the IPv4Interface and...
Medium: python-ipaddress
Issue Overview: A vulnerability was found in the way the ipaddress python module computes hash values in the IPv4Interface and IPv6Interface classes. This flaw allows an attacker to create many dictionary entries, due to the performance of a dictionary containing the IPv4Interface or IPv6Interfac...
Medium: python-pip
Issue Overview: A vulnerability was found in the way the ipaddress python module computes hash values in the IPv4Interface and IPv6Interface classes. This flaw allows an attacker to create many dictionary entries, due to the performance of a dictionary containing the IPv4Interface or IPv6Interfac...
Debian: Security Advisory (DLA-3424-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...