Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 3 days ago5 views

AlmaLinux 10 : git-lfs (ALSA-2026:30855)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:30855 advisory. golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 Tenable has extracted the...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 4 days ago6 views

golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname for example, xn--example-.com returns example.com instead of an error. Applications that validate the ASCII form then convert to Unicode may grant acce...

9.6CVSS6.6AI score0.00478EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 4 days ago4 views

golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname for example, xn--example-.com returns example.com instead of an error. Applications that validate the ASCII form then convert to Unicode may grant acce...

9.6CVSS6.6AI score0.00478EPSS
Exploits0References8
OSV
OSV
added 4 days ago3 views

ALSA-2026:30853 Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

9.6CVSS5.8AI score0.00478EPSS
Exploits0References4
Veracode
Veracode
added 2024/08/16 9:54 a.m.10 views

Race Condition

github.com/cilium/cilium is vulnerable to a Race Condition. The vulnerability is due to a timing issue in the Cilium agent's label processing logic, potentially causing it to overlook node labels. An attacker could potentially exploit this by crafting malicious network traffic that would normally...

6.8CVSS6.4AI score0.005EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/11 12:0 a.m.8 views

PT-2023-20764 · Xpdf +1 · Xpdf +1

Name of the Vulnerable Software and Affected Versions: Xpdf versions 4.04 and earlier Description: A PDF object loop in the page label tree leads to infinite recursion and a stack overflow. Recommendations: For Xpdf versions 4.04 and earlier, consider updating to a newer version to mitigate the...

9.1CVSS6.6AI score0.01618EPSS
Exploits22References71
Rows per page
Query Builder