Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2025/03/01 2:52 a.m.2 views

SUSE CVE-2025-27110

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.13, Libmodsecurit...

8.6CVSS6.8AI score0.00443EPSS
Exploits1References4
OSV
OSV
added 2025/02/25 8:15 p.m.1 views

DEBIAN-CVE-2025-27110

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.13, Libmodsecurit...

7.5CVSS7.9AI score0.00443EPSS
Exploits1References1
OSV
OSV
added 2025/02/25 8:15 p.m.3 views

UBUNTU-CVE-2025-27110

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.13, Libmodsecurit...

7.9CVSS5.8AI score0.00443EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/03/23 10:12 p.m.2 views

golang: net: incorrect parsing of extraneous zero characters at the beginning of an IP address octet

A flaw was found in golang. Extraneous zero characters at the beginning of an IP address octet are not properly considered which could allow an attacker to bypass IP-based access controls. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.5CVSS7.1AI score0.03775EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2021/08/18 7:0 a.m.2 views

Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet which (in some situations) allows attackers to bypass access control that is based on IP addresses because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.

...

7.5CVSS7.2AI score0.03775EPSS
Exploits1
OSV
OSV
added 2021/03/31 6:15 p.m.3 views

UBUNTU-CVE-2021-29662

The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which in some situations allows attackers to bypass access control that is based on IP addresses...

7.5CVSS5.8AI score0.02191EPSS
Exploits1References2
OSV
OSV
added 2021/02/26 10:15 p.m.3 views

DEBIAN-CVE-2021-27799

eanleadingzeroes in backend/upcean.c in Zint Barcode Generator 2.9.1 has a stack-based buffer overflow that is reachable from the C API through an application that includes the Zint Barcode Generator library code...

7.5CVSS7.8AI score0.02365EPSS
Exploits1References1
OSV
OSV
added 2021/02/26 10:15 p.m.2 views

UBUNTU-CVE-2021-27799

eanleadingzeroes in backend/upcean.c in Zint Barcode Generator 2.9.1 has a stack-based buffer overflow that is reachable from the C API through an application that includes the Zint Barcode Generator library code...

7.5CVSS6.2AI score0.02365EPSS
Exploits1References7
Rows per page
Query Builder