Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2026/06/30 12:13 a.m.5 views

ajv: ReDoS via $data reference

A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS Regular Expression Denial of...

7.5CVSS6.4AI score0.00492EPSS
Exploits1References5
OSV
OSV
added 2025/12/18 10:16 p.m.6 views

CVE-2025-68383

Improper Validation of Specified Index, Position, or Offset in Input CWE-1285 in Filebeat Syslog parser and the Libbeat Dissect processor can allow a user to trigger a Buffer Overflow CAPEC-100 and cause a denial of service panic/crash of the Filebeat process via either a malformed Syslog message...

6.5CVSS5.8AI score0.00168EPSS
Exploits0References1
Veracode
Veracode
added 2020/12/29 1:2 a.m.24 views

Denial Of Service (DoS)

opensmtpd is vulnerable to denial of service. The smtpd/lkafilter.c, in certain configurations, allows remote attackers to cause a denial of service via a NULL pointer dereference and daemon crash using a malicious pattern of client activity as the filter state machine does not properly maintain...

7.5CVSS4.3AI score0.03578EPSS
Exploits0References10Affected Software1
Veracode
Veracode
added 2018/08/31 2:53 a.m.17 views

Denial Of Service (DoS)

mosca is vulnerable to denial of service DoS attacks. The vulnerability exists due to the lack of escaping of the regular pattern string, allowing a malicious pattern to cause a DoS attack...

7.5CVSS7.1AI score0.03346EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder