Lucene search
+L

21 matches found

Cvelist
Cvelist
added 2026/07/09 7:22 a.m.35 views

CVE-2026-31984 DoS through oversized audit log entries in Guardian/CMC before 26.2.0

A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging functionality, due to a missing size limit on input recorded into audit entries. An unauthenticated attacker can submit requests containing excessively large input that is recorded into...

8.7CVSS0.00274EPSS
Exploits0References1
NOZOMI
NOZOMI
added 2026/07/07 12:0 a.m.5 views

DoS through oversized audit log entries in Guardian/CMC before 26.2.0

Summary A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging functionality, due to a missing size limit on input recorded into audit entries. Impact An unauthenticated attacker can submit requests containing excessively large input that is...

8.7CVSS6AI score0.00274EPSS
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.14 views

PT-2026-54484

Name of the Vulnerable Software and Affected Versions UltraVNC repeater versions prior to 1.8.2.3 Description An integer overflow exists in the HTTP request logging path. The win log function allocates list nodes using a calculation based on the length of the HTTP request URI. If the URI length i...

5.3CVSS6.4AI score0.01057EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/24 4:30 p.m.10 views

EUVD-2026-38927

In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to regioncount overflow The local variable regioncount in createlogcontext is declared as unsigned int 32-bit, but dmsectordivup returns sectort 64-bit. When a device-mapper target has a...

5.8AI score0.00127EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.7 views

EulerOS Virtualization 2.10.0 : krb5 (EulerOS-SA-2026-1175)

According to the versions of the krb5 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesse...

7.1CVSS5.9AI score0.00606EPSS
Exploits0References3
NVD
NVD
added 2025/11/26 11:15 p.m.10 views

CVE-2025-64333

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a large HTTP content type, when logged can cause a stack overflow crashing Suricata. This issue has been patched in versions...

7.5CVSS0.00284EPSS
Exploits0References1
NVD
NVD
added 2025/11/18 11:15 p.m.16 views

CVE-2025-65015

joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption JOSE standards. In versions from 1.3.3 to before 1.3.5 and from 1.4.0 to before 1.4.2, the ExceededSizeError exception messages are embedded with non-decoded JWT token parts and may cause...

9.2CVSS0.00354EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-0421

Malware in sbrugna...

6.4CVSS6.4AI score0.02061EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-9096

Malware in sbrugna...

6.8CVSS7.8AI score0.04255EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2854

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00632EPSS
Exploits0References3
OSV
OSV
added 2025/02/14 12:13 p.m.3 views

OESA-2025-1135 krb5 security update

Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. Security Fixes: In MIT krb5 release 1.7 and later with incremental propagation enabled, an authenticated attacker can cause kadmind to...

7.1CVSS7AI score0.00606EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

TP-LINK Archer AX21 安全漏洞

TP-LINK Archer AX21 is a wireless router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK Archer AX21 that originates from a stack-based buffer overflow in the tdpServer log records, allowing a network adjacent attacker to execute arbitrary code on an affected TP-Link Archer...

8.8CVSS9.2AI score0.00718EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/03/19 5:43 p.m.3 views

kernel: Rate limit overflow messages in r8152 in intr_callback

A vulnerability was found in intrcallback in drivers/net/usb/r8152.c in the BPF component in the Linux Kernel. The manipulation leads to logging excessive data, where an attack can be launched remotely...

5.3CVSS6.3AI score0.02211EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/02/07 4:33 p.m.5 views

kernel: Rate limit overflow messages in r8152 in intr_callback

A vulnerability was found in intrcallback in drivers/net/usb/r8152.c in the BPF component in the Linux Kernel. The manipulation leads to logging excessive data, where an attack can be launched remotely...

5.3CVSS6.2AI score0.02211EPSS
Exploits0References5
NVD
NVD
added 2023/11/27 10:15 a.m.30 views

CVE-2023-48369

Mattermost fails to limit the log size of server logs allowing an attacker sending specially crafted requests to different endpoints to potentially overflow the log...

5.3CVSS0.00632EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/27 12:0 a.m.3 views

PT-2023-30799 · Unknown · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost affected versions not specified Description: The issue allows an attacker to send specially crafted requests to different endpoints, potentially overflowing the log due to the lack of log size limitation of server logs...

5.3CVSS4.9AI score0.00632EPSS
Exploits0References7
CNVD
CNVD
added 2023/06/21 12:0 a.m.7 views

Mattermost Resource Management Error Vulnerability (CNVD-2023-55045)

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a resource management error vulnerability that stems from an inability to properly truncate postgres error log messages for failed search queries, which can be exploited by an...

4.3CVSS6.6AI score0.006EPSS
Exploits0References1
OSV
OSV
added 2022/05/17 6:0 p.m.49 views

UBUNTU-CVE-2022-28654

isclosingsession allows users to fill up apport.log...

5.5CVSS6AI score0.00252EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/05/17 12:0 a.m.58 views

Canonical Apport 安全漏洞

Canonical Apport is a toolkit from Canonical UK that is used to collect and provide feedback on error messages information that the operating system finds useful when an application crashes. A security vulnerability exists in Canonical Apport that stems from not limiting the number of log entries...

5.5CVSS5.7AI score0.00252EPSS
Exploits0References6
OSV
OSV
added 2022/03/18 12:11 a.m.24 views

GSD-2022-1000707 iommu/amd: Recover from event log overflow

iommu/amd: Recover from event log overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.13 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder