Lucene search
K

6 matches found

CNNVD
CNNVD
added 2025/01/09 12:0 a.m.4 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS6.8AI score0.00326EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.2 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS7.1AI score0.00329EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.4 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS7.1AI score0.00271EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/10/04 6:57 p.m.12 views

CVE-2023-42448 Hydra's contestation period in head datum can be modified during Close transaction, allowing malicious participant to freely modify the contestation deadline

Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, the specification states that the contestation period in the datum of the UTxO at the head validator must stay unchanged as the state progresses from Open to Closed Close transaction, but no such check appears to be...

8.1CVSS6.9AI score0.00785EPSS
Exploits0References5
OSV
OSV
added 2023/10/04 6:57 p.m.23 views

CVE-2023-42448 Hydra's contestation period in head datum can be modified during Close transaction, allowing malicious participant to freely modify the contestation deadline

Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, the specification states that the contestation period in the datum of the UTxO at the head validator must stay unchanged as the state progresses from Open to Closed Close transaction, but no such check appears to be...

8.1CVSS7.8AI score0.00785EPSS
Exploits0References7
CNVD
CNVD
added 2021/04/26 12:0 a.m.9 views

Unspecified Vulnerability in Apache Maven

Apache Maven is an application from the Apache USA Foundation. A software project management and understanding tool. Apache Maven suffers from a security vulnerability that stems from the potential risk of a malicious participant taking over the repository or being able to insert themselves into ...

9.1CVSS6.5AI score0.08691EPSS
Exploits2References1
Rows per page
Query Builder