Lucene search
+L

220 matches found

OSV
OSV
added 2022/09/26 5:16 p.m.16 views

PYSEC-2022-291

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

7.5CVSS1.2AI score0.01429EPSS
Exploits1References3
OSV
OSV
added 2022/09/26 4:50 p.m.28 views

CVE-2022-3272 Improper Handling of Length Parameter Inconsistency in ikus060/rdiffweb

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

5.3CVSS5.6AI score0.01429EPSS
Exploits1References5
Veracode
Veracode
added 2022/09/07 4:35 a.m.17 views

Buffer Overflows

francoisjacquet/rosariosis is vulnerable to buffer overflows. A remote attacker is able to cause buffer overflows due to the improper handling of length parameter in arrayrwalk function...

9.8CVSS8.9AI score0.00765EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2022/09/07 12:1 a.m.27 views

RosarioSIS before 10.1 vulnerable to Improper Handling of Length Parameter Inconsistency

RosarioSIS Student Information System prior to version 10.1 is vulnerable to Improper Handling of Length Parameter Inconsistency...

9.8CVSS2.7AI score0.00765EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/09/06 11:15 a.m.2 views

CVE-2022-2714

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

9.8CVSS7.1AI score0.00765EPSS
Exploits0References3
NVD
NVD
added 2022/09/06 11:15 a.m.34 views

CVE-2022-2714

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

9.8CVSS0.00765EPSS
Exploits0References2
Prion
Prion
added 2022/09/06 11:15 a.m.15 views

Input validation

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

7.5CVSS9.5AI score0.00765EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/06 10:15 a.m.41 views

CVE-2022-2714 Improper Handling of Length Parameter Inconsistency in francoisjacquet/rosariosis

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

8.1CVSS9.8AI score0.00765EPSS
Exploits0References2
CVE
CVE
added 2022/09/06 10:15 a.m.96 views

CVE-2022-2714

RosarioSIS (francoisjacquet/rosariosis) is affected by CVE-2022-2714 due to improper handling of length parameter inconsistencies. Public sources converge on affected versions being prior to 10.0 (Red Hat) and prior to 10.1 (GitHub advisory), indicating fixes are in 10.0/10.1 and later. A concret...

9.8CVSS9AI score0.00765EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/09/06 10:15 a.m.27 views

CVE-2022-2714 Improper Handling of Length Parameter Inconsistency in francoisjacquet/rosariosis

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

8.1CVSS8.2AI score0.00765EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/09/06 12:0 a.m.9 views

RosarioSIS 安全漏洞

RosarioSIS is a free and open source student information system. It is used to manage students, create reports and make sound decisions. A security vulnerability exists in RosarioSIS versions prior to 10.0 that stems from mishandling of length parameter inconsistencies...

9.8CVSS7.6AI score0.00765EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/06 12:0 a.m.6 views

PT-2022-18245 · Unknown · Rosariosis Student Information System +1

Name of the Vulnerable Software and Affected Versions: rosariosis versions prior to 10.0 RosarioSIS Student Information System versions prior to 10.1 Description: The issue is related to improper handling of length parameter inconsistency in the GitHub repository francoisjacquet/rosariosis...

9.8CVSS7.9AI score0.00765EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2022/05/05 3:17 p.m.7 views

CVE-2021-38445 OCI OpenDDS Secure Improper Handling of Length Parameter Inconsistency

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...

7CVSS7.3AI score0.02583EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/05/05 3:17 p.m.31 views

CVE-2021-38445 OCI OpenDDS Secure Improper Handling of Length Parameter Inconsistency

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...

7CVSS9.7AI score0.02583EPSS
Exploits0References2
NVD
NVD
added 2022/04/29 6:15 p.m.24 views

CVE-2022-1543

Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server...

9.3CVSS0.01097EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/04/29 6:15 p.m.6 views

CVE-2022-1543

Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server...

9.3CVSS7.3AI score0.01097EPSS
Exploits1References3
Prion
Prion
added 2022/04/29 6:15 p.m.14 views

Design/Logic Flaw

Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server...

6.5CVSS8.9AI score0.01097EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/04/29 6:10 p.m.30 views

CVE-2022-1543 Improper handling of Length parameter in erudika/scoold

Improper handling of Length parameter in GitHub repository erudika/scoold prior to 1.49.4. When the text size is large enough the service results in a momentary outage in a production environment. That can lead to memory corruption on the server...

9.3CVSS9.1AI score0.01097EPSS
Exploits1References2
CVE
CVE
added 2022/04/29 6:10 p.m.77 views

CVE-2022-1543

CVE-2022-1543 affects erudika/scoold prior to 1.49.4. The root cause is improper handling of the Length parameter in large text inputs, which can cause a momentary outage and potential memory corruption on the server. CVSS metrics indicate high/critical impact (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H...

9.3CVSS9AI score0.01097EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/04/29 12:0 a.m.4 views

Erudika Scoold 安全漏洞

Erudika Scoold is an open source question and answer/knowledge base platform written in Java by the Bulgarian company Erudika. A security vulnerability exists in Scoold prior to version 1.49.4, which stems from improper handling of the Length parameter. When the text size was large enough, the...

9.3CVSS8.3AI score0.01097EPSS
Exploits1References3
Rows per page
Query Builder