Lucene search
K

346 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.14 views

CVE-2024-32632

A value in ATCMD will be misinterpreted by printf, causing incorrect output and possibly out-of-bounds memory access...

6.6CVSS7AI score0.00226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:39 a.m.12 views

CVE-2024-31033

JJWT aka Java JWT through 0.12.5 ignores certain characters and thus a user might falsely conclude that they have a strong key. The impacted code is the setSigningKey method within the DefaultJwtParser class and the signWith method within the DefaultJwtBuilder class. NOTE: the vendor disputes thi...

6.8CVSS7.1AI score0.00776EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:17 a.m.6 views

CVE-2023-30910

HPE MSA Controller prior to version IN210R004 could be remotely exploited to allow inconsistent interpretation of HTTP requests...

5.4CVSS6.8AI score0.00295EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.7 views

CVE-2023-32228

A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF allowing an adversary to grant access to the last authorized user...

4.6CVSS7AI score0.00233EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:30 a.m.7 views

CVE-2022-48471

There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal...

7.5CVSS6.8AI score0.00441EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:23 a.m.8 views

CVE-2022-48473

There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal...

7.5CVSS6.7AI score0.00441EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:13 a.m.9 views

CVE-2017-1000416

axTLS version 1.5.3 has a coding error in the ASN.1 parser resulting in the year 1950 of UTCTime being misinterpreted as 2050...

5.3CVSS6.9AI score0.00871EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 2:0 p.m.5 views

php: Header parser of http stream wrapper does not handle folded headers

A flaw was found in PHP. This vulnerability allows misinterpretation of HTTP response headers, potentially leading to incorrect usage of headers, MIME types, and other response attributes via incorrect parsing of folded headers in the HTTP request module...

6.3CVSS5.8AI score0.00547EPSS
Exploits1References5
OSV
OSV
added 2025/05/07 7:11 p.m.6 views

RLSA-2024:5299 Moderate: wget security update

The wget packages provide the GNU Wget file retrieval utility for HTTP, HTTPS, and FTP protocols. Security Fixes: wget: Misinterpretation of input may lead to improper behavior CVE-2024-38428 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and othe...

5.5CVSS9.4AI score0.00672EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/04/28 3:19 p.m.6 views

php: Stream HTTP wrapper header check might omit basic auth header

A flaw was found in PHP. This vulnerability allows certain headers to be either not sent or misinterpreted due to insufficient validation of the end-of-line characters via user-supplied headers...

7.3CVSS5.7AI score0.00531EPSS
Exploits0References5
OSV
OSV
added 2025/04/14 11:39 a.m.13 views

BIT-PHP-2025-1736 Stream HTTP wrapper header check might omit basic auth header

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when user-supplied headers are sent, the insufficient validation of the end-of-line characters may prevent certain headers from being sent or lead to certain headers be misinterpreted...

7.3CVSS6AI score0.00531EPSS
Exploits0References4
OSV
OSV
added 2025/04/14 11:35 a.m.12 views

BIT-PYTHON-MIN-2025-1795 Mishandling of comma during folding and unicode-encoding of email headers

During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted...

2.3CVSS5.1AI score0.00575EPSS
Exploits0References11
Amazon
Amazon
added 2025/04/01 12:0 a.m.5 views

Low: python3.9

Issue Overview: During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header bein...

2.3CVSS7.6AI score0.00575EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.8 views

Amazon Linux 2 : python3 (ALAS-2025-2808)

The version of python3 installed on the remote host is prior to 3.7.16-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2808 advisory. During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the...

2.3CVSS6.4AI score0.00575EPSS
Exploits0References4
NVD
NVD
added 2025/03/30 6:15 a.m.21 views

CVE-2025-1736

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when user-supplied headers are sent, the insufficient validation of the end-of-line characters may prevent certain headers from being sent or lead to certain headers be misinterpreted...

7.3CVSS0.00531EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/03/30 5:49 a.m.17 views

CVE-2025-1736

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when user-supplied headers are sent, the insufficient validation of the end-of-line characters may prevent certain headers from being sent or lead to certain headers be misinterpreted...

7.3CVSS6.2AI score0.00531EPSS
Exploits0
OSV
OSV
added 2025/03/29 6:15 a.m.15 views

CVE-2025-1217

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when http request module parses HTTP response obtained from a server, folded headers are parsed incorrectly, which may lead to misinterpreting the response and using incorrect headers, MIME...

3.1CVSS7.1AI score
Exploits0References3
Debian CVE
Debian CVE
added 2025/03/29 5:19 a.m.11 views

CVE-2025-1217

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when http request module parses HTTP response obtained from a server, folded headers are parsed incorrectly, which may lead to misinterpreting the response and using incorrect headers, MIME...

6.3CVSS6.1AI score0.00547EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2025-1795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also...

2.3CVSS6.2AI score0.00575EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/04 1:31 p.m.8 views

CVE-2025-1933 JIT corruption of WASM i32 return values on 64-bit CPUs

On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

7.1AI score0.00294EPSS
Exploits0References6
Rows per page
Query Builder