Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/04/21 12:0 a.m.11 views

nest 安全漏洞

Nest is a Node.js framework developed by NestJS, designed for building efficient, scalable, and enterprise-level server-side applications using TypeScript/JavaScript. Versions of Nest prior to 11.1.19 contained a security vulnerability. This vulnerability stemmed from the recursive invocation of...

7.5CVSS5.9AI score0.00329EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/28 7:30 p.m.4 views

CVE-2025-61730 Handshake messages may be processed at the incorrect encryption level in crypto/tls

During the TLS 1.3 handshake if multiple messages are sent in records that span encryption level boundaries for instance the Client Hello and Encrypted Extensions messages, the subsequent messages may be processed before the encryption level changes. This can cause some minor information disclosu...

5.8AI score0.00276EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in macOS, which is caused by a boundary error in Heimdal when processing server messages. The following products and versions are affected: macOS: 11.0 20A2411, 11.0.1 20B29,...

5.5CVSS6.7AI score0.01999EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2017/09/01 12:0 a.m.8 views

The vulnerability of the Android operating system in the CAF repository exists due to errors in processing incoming 3G NAS messages. This allows a perpetrator to compromise privacy, integrity, and accessibility.

The vulnerability of the Android operating system from the CAF repository is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of incoming 3G NAS messages...

10CVSS8.2AI score0.00836EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/08/18 6:51 p.m.4 views

mod_cluster: JavaScript code injection is possible via MCMP mod_manager messages

A flaw was found in the way the modcluster manager processed certain MCMP messages. An attacker with access to the network from which MCMP messages are allowed to be sent could use this flaw to execute arbitrary JavaScript code in the modcluster manager web interface...

4.3CVSS7.4AI score0.01846EPSS
Exploits0References4
Rows per page
Query Builder