253 matches found
CVE-2025-26699
An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2.20. The django.utils.text.wrap method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings...
redis: Denial-of-service due to unbounded pattern matching in Redis
A flaw was found in Redis. This flaw allows authenticated users to trigger a denial of service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST, and ACL definitions. Matching of extremely long patterns may...
USN-7153-1: PHP vulnerability
It was discovered that PHP incorrectly handled long string inputs in two database drivers. An attacker could possibly use this issue to write files in locations they would not normally have access to. CVE-2024-11236...
CVE-2024-31228
A flaw was found in Redis. This flaw allows authenticated users to trigger a denial of service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST, and ACL definitions. Matching of extremely long patterns may...
UBUNTU-CVE-2024-31228
Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...
CVE-2024-31228 Denial-of-service due to unbounded pattern matching in Redis
Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...
CVE-2024-31228
Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...
CVE-2024-31228 Denial-of-service due to unbounded pattern matching in Redis
Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...
CVE-2024-31228
Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...
The vulnerability of the main function (mint.cpp) in the database management system “Red Database”, which allows a perpetrator to cause errors in the operation of the mint utility.
The vulnerability of the main function mint.cpp in the “Red Database” database management system is related to the incorrect processing of parameter I in the mint utility. Exploiting this vulnerability allows a remote attacker to send an excessively long string to the utility, causing the mint...
Django Security Vulnerabilities
Django is a set of open source web application frameworks based on the Python language from the Django Foundation. The framework includes an object-oriented mapper, view system, template system, and more. A security vulnerability exists in Django versions prior to 5.0.7 and prior to 4.2.14, which...
DEBIAN-CVE-2024-34403
An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string...
AZL-43221 CVE-2024-34403 affecting package uriparser for versions less than 0.9.8-3
An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string...
UBUNTU-CVE-2024-34403
An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string...
CVE-2024-34403
An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string...
uriparser 安全漏洞
Uriparser is a strictly Rfc 3986 compliant Uri parsing and processing library written in C89. A security vulnerability exists in uriparser version 0.9.7, which stems from an integer overflow via a long string...
Ezhometech EzServer Security Vulnerability
Ezhometech EzServer is an IPTV Interactive Internet Protocol Television streaming server from Ezhometech. A security vulnerability exists in Ezhometech EzServer version 6.4.017, which can be exploited to cause a denial of service via a long string...
CVE-2024-23985
EzServer 6.4.017 is affected by CVE-2024-23985, enabling a denial-of-service (daemon crash) via extremely long input strings (e.g., RNTO). CVSSv3.1: 7.5 (HIGH) with network access, no user interaction. Public references describe input-length-related DoS; Red Hat and other sources confirm the issu...
Tenda AC6 Denial of Service Vulnerability
The Tenda AC6 is a wireless router from the Chinese company Tenda. A denial of service vulnerability exists in the Tenda AC6. The vulnerability stems from a failure to properly handle incoming error messages and can be exploited to cause a denial of service device crash via a long string in the...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS in the strbufcat function via a long string, which allows context-dependent attackers. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and...