Lucene search
K

15 matches found

RedHat Linux
RedHat Linux
added 2026/05/26 4:27 a.m.21 views

net/url: Incorrect parsing of IPv6 host literals in net/url

The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References8
OSV
OSV
added 2025/08/25 2:15 p.m.3 views

CVE-2025-54486

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS8.1AI score
Exploits0References2
OSV
OSV
added 2024/12/18 9:15 p.m.7 views

AZL-54480 CVE-2024-45338 affecting package containernetworking-plugins 1.1.1-17

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...

5.3CVSS6.6AI score0.00856EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2024/11/19 4:0 p.m.23 views

expat security update

An update is available for expat. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Expat is a C library for parsing XML documents. Security Fixes: libexpat: expat...

5.9CVSS6.9AI score0.0104EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/07/09 2:16 p.m.15 views

CVE-2024-39697 phonenumber panics on parsing crafted phonenumber inputs

phonenumber is a library for parsing, formatting and validating international phone numbers. Since 0.3.4, the phonenumber parsing code may panic due to a panic-guarded out-of-bounds access on the phonenumber string. In a typical deployment of rust-phonenumber, this may get triggered by feeding a...

8.6CVSS6.9AI score0.00711EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/05/22 10:10 a.m.28 views

Moderate: Red Hat Security Advisory: exempi security update

An update for exempi is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.5CVSS6.8AI score0.00998EPSS
Exploits2References4
OSV
OSV
added 2023/05/12 9:15 p.m.4 views

CVE-2023-25005

A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL files could lead to a resource injection vulnerability...

7.8CVSS7.1AI score0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/27 12:0 a.m.4 views

CVE-2022-3095 Incorrect parsing of the backslash characters in Dart library

The implementation of backslash parsing in the Dart URI class for versions prior to 2.18 and Flutter versions prior to 3.30 differs from the WhatWG URL standards. Dart uses the RFC 3986 syntax, which creates incompatibilities with the '' characters in URIs, which can lead to auth bypass in webapp...

9.8CVSS9.5AI score0.00867EPSS
Exploits0References1
Fedora
Fedora
added 2021/07/22 1:16 a.m.12 views

[SECURITY] Fedora 33 Update: libtraceevent-1.1.1-2.fc33

libtraceevent is a library to parse raw trace event formats...

3.6AI score
Exploits0
CNVD
CNVD
added 2019/12/23 12:0 a.m.2 views

ABB PB610 Panel Builder 600 PB610 HMIStudio DLL Parsing Vulnerability

ABB PB610 Panel Builder 600 is a software for designing graphical user interfaces for the CP600 control panel platform. A security vulnerability in the ABB PB610 Panel Builder 600 PB610 HMIStudio component parsing DLL allows remote attackers to exploit the vulnerability by submitting a special fi...

7.8CVSS7.5AI score0.004EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/09/18 12:0 a.m.32 views

Debian Security Advisory DSA 2428-1 (freetype - several vulnerabilities)

Mateusz Jurczyk from the Google Security Team discovered several vulnerabilties in Freetype's parsing of BDF, Type1 and TrueType fonts, which could result in the execution of arbitrary code if a malformed font file is processed. OpenVAS Vulnerability Test $Id: deb24281.nasl 6611 2017-07-07...

9.3CVSS0.2AI score0.04912EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2012/08/22 12:0 a.m.22 views

Oracle Outside In Excel File TxO Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of products utilizing Oracle's Outside In Technology. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the...

10CVSS7.7AI score
Exploits0References1
Amazon
Amazon
added 2011/10/31 12:0 a.m.37 views

Medium: rpm

Issue Overview: Multiple flaws were found in the way the RPM library parsed package headers. An attacker could create a specially-crafted RPM package that, when queried or installed, would cause rpm to crash or, potentially, execute arbitrary code. CVE-2011-3378 Affected Packages: rpm Issue...

9.3CVSS8.1AI score0.06042EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.32 views

CentOS Update for expat CESA-2009:1625 centos4 i386

Check for the Version of expat OpenVAS Vulnerability Test CentOS Update for expat CESA-2009:1625 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

5CVSS7.4AI score0.27924EPSS
Exploits3References2
Gentoo Linux
Gentoo Linux
added 2007/12/29 12:0 a.m.30 views

libexif: Multiple vulnerabilities

Background libexif is a library for parsing, editing and saving Exif metadata from images. Exif, the Exchangeable image file format, specifies the addition of metadata tags to JPEG, TIFF and RIFF files. Description Meder Kydyraliev Google Security discovered an integer overflow vulnerability in t...

6.8CVSS7.4AI score0.02727EPSS
Exploits0
Rows per page
Query Builder