Lucene search
K

211 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29233

Malicious code in bioql PyPI...

3.1CVSS6.5AI score0.00224EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1819

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00349EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13642

Malicious code in bioql PyPI...

8.9CVSS6.3AI score0.00182EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-1166

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01386EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-44044

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00226EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/18 12:0 a.m.8 views

Fedora 42 : perl-Cpanel-JSON-XS (2025-f4f4dae8f2)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-f4f4dae8f2 advisory. This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON...

5.6CVSS5.5AI score0.00405EPSS
Exploits0References2
NVD
NVD
added 2025/09/15 7:15 p.m.4 views

CVE-2025-59398

The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...

3.1CVSS0.00224EPSS
Exploits0References5
OSV
OSV
added 2025/09/15 7:15 p.m.4 views

CVE-2025-59398

The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...

3.1CVSS6.7AI score
Exploits0References5
Snyk
Snyk
added 2025/09/15 6:43 p.m.5 views

Missing Report of Error Condition

Overview Affected versions of this package are vulnerable to Missing Report of Error Condition via the ChargePoint::messagecallback function. An attacker can cause a crash by submitting JSON input exceeding 255 characters, which triggers an exception due to the StringTooLarge parameter being set ...

3.1CVSS6.9AI score0.00224EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.6 views

PT-2025-37737

Name of the Vulnerable Software and Affected Versions libocpp versions prior to 0.26.2 Description The OCPP implementation in libocpp is susceptible to a denial of service EVerest crash when processing JSON input exceeding 255 characters. This occurs because a CiString object is created with...

3.1CVSS6.5AI score0.00224EPSS
Exploits0References9
CVE
CVE
added 2025/09/15 12:0 a.m.13 views

CVE-2025-59398

Summary : CVE-2025-59398 affects the libocpp OCPP implementation prior to 0.26.2. The vulnerability arises when processing JSON input larger than 255 characters, which leads to a crash due to a CiString object created with StringTooLarge set to Throw, resulting in a denial of service (EVerest cra...

3.1CVSS6.3AI score0.00224EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/15 12:0 a.m.10 views

CVE-2025-59398

The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...

3.1CVSS0.00224EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.6 views

libocpp 安全漏洞

libocpp is an open charge point protocol open-sourced by EVerest. A security vulnerability exists in versions prior to libocpp 0.26.2, which stems from a crash caused by the creation of a CiString object when processing JSON input of more than 255 characters, potentially resulting in a denial of...

3.1CVSS6.5AI score0.00224EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/12 12:0 a.m.7 views

Fedora 43 : perl-Cpanel-JSON-XS (2025-ce67f2ffd1)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ce67f2ffd1 advisory. This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON...

5.6CVSS5.5AI score0.00405EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-6709

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MongoDB Server is susceptible to a denial of service vulnerability due to improper handling of specific date values in JSON input when using OIDC...

7.5CVSS7.6AI score0.00466EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/08 3:41 p.m.3 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the SIMD.xs process. An attacker can cause a segmentation fault and potentially disrupt service availability by submitting specially crafted JSON input. Remediation Upgrade pjuhasz/JSON-SIMD to version 1.0...

7.5CVSS6.8AI score0.0063EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/01 12:0 a.m.5 views

MongoDB 6.0.x < 6.0.21 / 7.0.x < 7.0.17 / 8.0.x < 8.0.5 DoS OIDC Authentication (SERVER-106748)

The version of MongoDB installed on the remote host is 6.0 prior to 6.0.21, 7.0 prior to 7.0.17 and 8.0 prior to 8.0.5. It is, therefore, affected by a vulnerability as referenced in the SERVER-106748 advisory. - The MongoDB Server is susceptible to a denial of service vulnerability due to improp...

7.5CVSS7.4AI score0.00466EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/23 10:41 a.m.6 views

Security Bulletin: Jackson-Core Prior to 2.15.0 Due to Unbounded Nesting in JSON Input

Summary jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is...

8.7CVSS5.7AI score0.00634EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/27 12:0 a.m.5 views

Atlassian Confluence 7.19.x < 8.5.22 / 8.6.x < 9.2.4 / 9.3.x < 9.4.1 (CONFSERVER-99835)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-99835 advisory. - A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially crafted JSON input, containing a large number of ''...

7.5CVSS6.3AI score0.01119EPSS
Exploits1References2
NVD
NVD
added 2025/06/26 2:15 p.m.5 views

CVE-2025-6709

The MongoDB Server is susceptible to a denial of service vulnerability due to improper handling of specific date values in JSON input when using OIDC authentication. This can be reproduced using the mongo shell to send a malicious JSON payload leading to an invariant failure and server crash. Thi...

7.5CVSS0.00466EPSS
Exploits0References1
Rows per page
Query Builder