Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/26 12:0 a.m.8 views

openSUSE 16 Security Update : go1.24 (openSUSE-SU-2026:20077-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20077-1 advisory. Update to go1.24.12 released 2026-01-15 bsc1236217 Security fixes: - CVE-2025-61730: crypto/tls: handshake messages may be processed at the...

10CVSS8.8AI score0.01945EPSS
Exploits2References19
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Fedora 43 : rpki-client (2026-0d27571013)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-0d27571013 advisory. rpki-client 9.7 - The Canonical Cache Representation underwent a breaking change after the adoption of...

5.6AI score
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-53378

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-55065

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00857EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2024:3404-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.0048EPSS
Exploits0References4
OSV
OSV
added 2025/03/19 4:3 p.m.13 views

CVE-2025-30153 Improper Handling of Highly Compressed Data (Data Amplification) in github.com/getkin/kin-openapi/openapi3filter

kin-openapi is a Go project for handling OpenAPI files. Prior to 0.131.0, when validating a request with a multipart/form-data schema, if the OpenAPI schema allows it, an attacker can upload a crafted ZIP file e.g., a ZIP bomb, causing the server to consume all available system memory. The root...

7.5CVSS5.5AI score0.00497EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/10/14 2:22 a.m.34 views

Important: Red Hat Security Advisory: container-tools:rhel8 security update

An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.01165EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.26 views

Amazon Linux 2023 : containerd, containerd-stress (ALAS2023-2024-697)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-697 advisory. 2024-08-28: CVE-2024-24790 was added to this advisory. 2024-08-09: CVE-2023-47108 was removed from this advisory. 2024-08-09: The severity of this advisory has been changed from Important to...

9.8CVSS7AI score0.01952EPSS
Exploits0References6
OSV
OSV
added 2024/04/30 12:0 a.m.63 views

ALSA-2024:2368 Moderate: mod_http2 security update

The modhttp2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modhttp2: DoS in HTTP/2 with initial window size 0 CVE-2023-43622 modhttp2: reset requests exhaust memory incomplete fix of CVE-2023-44487 CVE-2023-45802 For mo...

7.5CVSS8.6AI score0.99999EPSS
Exploits20References6
Vulnrichment
Vulnrichment
added 2024/03/05 10:22 p.m.15 views

CVE-2023-45290 Memory exhaustion in multipart form parsing in net/textproto and net/http

When parsing a multipart form either explicitly with Request.ParseMultipartForm or implicitly with Request.FormValue, Request.PostFormValue, or Request.FormFile, limits on the total size of the parsed form were not applied to the memory consumed while reading a single form line. This permits a...

7.1AI score0.01165EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/03/05 10:22 p.m.31 views

CVE-2023-45290 Memory exhaustion in multipart form parsing in net/textproto and net/http

When parsing a multipart form either explicitly with Request.ParseMultipartForm or implicitly with Request.FormValue, Request.PostFormValue, or Request.FormFile, limits on the total size of the parsed form were not applied to the memory consumed while reading a single form line. This permits a...

7.6AI score0.01165EPSS
Exploits0References6
OSV
OSV
added 2023/03/24 9:0 a.m.6 views

SUSE-SU-2023:1566-1 Security update for containerd

This update for containerd fixes the following issues: - CVE-2022-23471: Fixed host memory exhaustion through Terminal resize goroutine leak bsc1206235. - Re-build containerd to use updated golang-packaging jsc1342. - Update to containerd v1.6.16 for Docker v23.0.0-ce...

6.5CVSS6.7AI score0.01022EPSS
Exploits0References3
OSV
OSV
added 2019/09/09 10:9 a.m.9 views

SUSE-SU-2019:2335-1 Security update for python-Django1

This update for python-Django1 to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' bsc1142880. - CVE-2019-14233: Fixed a denial of service in striptags bsc1142882. - CVE-2019-14234: Fixed an SQL injection in key and index...

9.8CVSS6.8AI score0.47694EPSS
Exploits0References13
OSV
OSV
added 2019/08/08 3:57 p.m.10 views

OPENSUSE-SU-2019:1839-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issues fixed: - CVE-2019-11358: Fixed prototype pollution. - CVE-2019-12308: Fixed XSS in AdminURLFieldWidget bsc1136468 - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. -...

9.8CVSS7.1AI score0.87218EPSS
Exploits4References14
OSV
OSV
added 2019/05/10 12:14 p.m.9 views

SUSE-SU-2019:1215-1 Security update for python-Django1

This update for python-Django1 fixes the following issue: Security issue fixed: - CVE-2019-6975: Fixed memory exhaustion in django.utils.numberformat.format bsc1124991...

7.5CVSS7.5AI score0.05399EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/03/21 12:0 a.m.29 views

Fedora 29 : python2-django1.11 (2019-f528d75a69)

Update to the 1.11.20 security fix release Fixes CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.5CVSS6.3AI score0.05399EPSS
Exploits0References2
OSV
OSV
added 2017/08/23 1:13 p.m.9 views

SUSE-SU-2017:2243-1 Security update for freeradius-server

This update for freeradius fixes the following issues: Security issues fixed: - CVE-2017-10988: Decode 'signed' attributes correctly. bnc1049086 - CVE-2017-10987: Check for option overflowing the packet. bnc1049086 - CVE-2017-10985: Fix infinite loop and memory exhaustion with 'concat' attributes...

9.8CVSS8.1AI score0.06015EPSS
Exploits0References8
Rows per page
Query Builder