Lucene search
+L

63 matches found

githubexploit
githubexploit
added 2026/02/20 2:8 a.m.344 views

Exploit for CVE-2025-4517

CVE-2025-4517 — Python tarfile filter="data" Bypass PoC P...

9.4CVSS5.6AI score0.01227EPSS
Exploits11
ptsecurity
ptsecurity
added 2026/02/13 12:0 a.m.15 views

PT-2026-8018

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access MAC layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a crash SIGABRT when processing string literals longer...

5.5CVSS6AI score0.0024EPSS
Exploits1References4
osv
osv
added 2026/02/11 8:29 a.m.4 views

SUSE-SU-2026:0423-1 Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: - Add max length decompression bsc1254867, bsc1256017...

5.8AI score
Exploits0References3
cnnvd
cnnvd
added 2026/01/22 12:0 a.m.11 views

Mastodon security vulnerabilities

Mastodon is an open-source social networking server based on ActivityPub. Versions of Mastodon prior to v4.5.5, v4.4.12, and v4.3.18 contained security vulnerabilities. These vulnerabilities stemmed from the lack of enforcing a maximum length for list names, filter names, or filter keywords, whic...

6.5CVSS5.8AI score0.00296EPSS
Exploits0References4
osv
osv
added 2026/01/16 11:16 a.m.9 views

PYSEC-2026-9

In Apache Airflow versions before 3.1.6, when rendered template fields in a Dag exceed core maxtemplatedfieldlength, sensitive values could be exposed in cleartext in the Rendered Templates UI. This occurred because serialization of those fields used a secrets masker instance that did not include...

7.5CVSS5.8AI score0.00586EPSS
Exploits0References3
osv
osv
added 2026/01/12 9:21 a.m.9 views

CLSA-2026-1768209702 ruby: Fix of CVE-2025-24294

CVE-2025-24294: fix decompressed name length limit in DNS resolver to prevent exceeding RFC 1035's 255-octet maximum...

7.5CVSS5.8AI score0.00539EPSS
Exploits0References1
cve
cve
added 2025/12/24 1:5 p.m.13 views

CVE-2022-50747

CVE-2022-50747: In the Linux kernel hfs_asc2mac(), an out-of-bounds write could occur when in->len exceeds HFS_NAMELEN, if dst reaches boundary while srclen remains > 0. The fix adds a dstlen check in the writing loop to prevent OOB writes. Affected: Linux kernel hfs/trans.c; root cause: mi...

6AI score0.00239EPSS
Exploits0References9
osv
osv
added 2025/12/22 10:16 p.m.2 views

DEBIAN-CVE-2025-34457

wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 694c954, contain a stack-based buffer overflow vulnerability in the function kissrecbyte located in src/kissframe.c. When processing crafted KISS frames that reach the maximum allowed frame length MAXKISSLEN, the function...

8.7CVSS6AI score0.00468EPSS
Exploits0References1
osv
osv
added 2025/12/22 9:30 p.m.5 views

CVE-2025-34457 wb2osz/direwolf <= 1.8.1 Stack-based Buffer Overflow DoS

wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 694c954, contain a stack-based buffer overflow vulnerability in the function kissrecbyte located in src/kissframe.c. When processing crafted KISS frames that reach the maximum allowed frame length MAXKISSLEN, the function...

8.7CVSS6.3AI score0.00468EPSS
Exploits0References7
osv
osv
added 2025/12/08 1:16 a.m.2 views

DEBIAN-CVE-2025-40294

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix OOB access in parseadvmonitorpattern In the parseadvmonitorpattern function, the value of the 'length' variable is currently limited to HCIMAXEXTADLENGTH251. The size of the 'value' array in the mgmtadvpatter...

5.2AI score0.00174EPSS
Exploits0References1
susecve
susecve
added 2025/11/14 12:23 a.m.10 views

SUSE CVE-2025-40205

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

5.5CVSS6.8AI score0.00193EPSS
Exploits0References21
osv
osv
added 2025/11/12 10:15 p.m.1 views

DEBIAN-CVE-2025-40205

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

5.4AI score0.00193EPSS
Exploits0References1
susecve
susecve
added 2025/10/22 11:59 p.m.5 views

SUSE CVE-2023-53729

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAXLEN + 1. If a string is actually MAXLEN + 1 length, this wil...

6.5CVSS6.5AI score0.00187EPSS
Exploits0References15
osv
osv
added 2025/10/22 2:15 p.m.3 views

DEBIAN-CVE-2023-53729

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAXLEN + 1. If a string is actually MAXLEN + 1 length, this wil...

5.3AI score0.00187EPSS
Exploits0References1
cvelist
cvelist
added 2025/10/22 1:23 p.m.10 views

CVE-2023-53729 soc: qcom: qmi_encdec: Restrict string length in decode

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAXLEN + 1. If a string is actually MAXLEN + 1 length, this wil...

0.00187EPSS
Exploits0References7
github
github
added 2025/10/16 6:41 p.m.9 views

Strapi Password Hashing is Missing Maximum Password Length Validation

Summary Strapi's password hashing implementation using bcryptjs lacks maximum password length validation. Since bcryptjs truncates passwords exceeding 72 bytes, this creates potential vulnerabilities such as authentication bypass and performance degradation. POC Create an admin user with a passwo...

6.3CVSS7.1AI score0.00379EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2025/10/16 4:21 p.m.10 views

CVE-2025-25298 Missing Maximum Password Length Validation in Strapi Password Hashing

Strapi is an open source headless CMS. The @strapi/core package before version 5.10.3 does not enforce a maximum password length when using bcryptjs for password hashing. Bcryptjs ignores any bytes beyond 72, so passwords longer than 72 bytes are silently truncated. A user can create an account...

6.3CVSS0.00379EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2025/10/16 4:21 p.m.3 views

CVE-2025-25298 Missing Maximum Password Length Validation in Strapi Password Hashing

Strapi is an open source headless CMS. The @strapi/core package before version 5.10.3 does not enforce a maximum password length when using bcryptjs for password hashing. Bcryptjs ignores any bytes beyond 72, so passwords longer than 72 bytes are silently truncated. A user can create an account...

6.3CVSS6.6AI score0.00379EPSS
Exploits1References2
cve
cve
added 2025/10/16 4:21 p.m.14 views

CVE-2025-25298

CVE-2025-25298 concerns Strapi’s @strapi/core up to v5.10.3, where bcryptjs-based password hashing does not enforce a maximum password length. Passwords longer than 72 bytes are silently truncated by bcryptjs, allowing a user to register with an overlong password and authenticate using only the f...

6.3CVSS6.6AI score0.00379EPSS
Exploits1References2Affected Software1
osv
osv
added 2025/09/01 7:15 p.m.7 views

UBUNTU-CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

9.8CVSS6.2AI score0.00395EPSS
Exploits0References5
Rows per page
Query Builder