6 matches found
CVE-2024-34075
kurwov is a fast, dependency-free library for creating Markov Chains. An unsafe sanitization of dataset contents on the MarkovDatagetNext method used in Markovgenerate and Markovchoose allows a maliciously crafted string on the dataset to throw and stop the function from running properly. If a...
CVE-2024-34075 kurwov vulnerable to Denial of Service due to improper data sanitization
kurwov is a fast, dependency-free library for creating Markov Chains. An unsafe sanitization of dataset contents on the MarkovDatagetNext method used in Markovgenerate and Markovchoose allows a maliciously crafted string on the dataset to throw and stop the function from running properly. If a...
CVE-2024-34075
CVE-2024-34075 (kurwov) affects the Markov chain library kurwov. A flaw in the unsafe sanitization in MarkovData#getNext (used by Markov#generate and Markov#choose) lets a crafted dataset string bypass sanitization when it contains the forbidden substring "proto " followed by a space, by manipula...
CVE-2024-34075 kurwov vulnerable to Denial of Service due to improper data sanitization
kurwov is a fast, dependency-free library for creating Markov Chains. An unsafe sanitization of dataset contents on the MarkovDatagetNext method used in Markovgenerate and Markovchoose allows a maliciously crafted string on the dataset to throw and stop the function from running properly. If a...
kurwov 安全漏洞
kurwov is a fast, dependency-free library for creating Markov chains from the individual developers of kubus. A security vulnerability exists in kurwov versions prior to 3.1.0 through 3.2.5 that stems from the presence of a denial of service vulnerability...
PT-2024-25686 · Kurwov · Kurwov
Name of the Vulnerable Software and Affected Versions: kurwov versions prior to 3.2.5 Description: The issue arises from an unsafe sanitization of dataset contents on the MarkovDatagetNext method used in Markovgenerate and Markovchoose. This allows a maliciously crafted string on the dataset to...