Lucene search
K

9 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in exiv2

In Exiv2, from version 0.27.1 onwards, a malicious HTTP server can cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.7AI score0.02115EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/27 11:21 p.m.2 views

EUVD-2026-16903

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References1
CVE
CVE
added 2026/03/26 6:55 p.m.10 views

CVE-2026-28503

Tandoor Recipes CVE-2026-28503: Prior to version 2.6.0, SyncViewSet.query_synced_folder() uses get_object_or_404(Sync, pk=pk) without scoping to space, allowing cross-space IDOR where an admin in Space A could trigger syncs (Dropbox/Nextcloud/Local import) and view logs for Sync configurations in...

6.9CVSS5.8AI score0.00303EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.4 views

SUSE CVE-2019-13114

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.7AI score0.02115EPSS
Exploits1References5
PyPA
PyPA
added 2019/06/30 11:15 p.m.12 views

PYSEC-2019-257

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.8AI score0.02115EPSS
Exploits1References7
OSV
OSV
added 2019/06/30 11:15 p.m.2 views

ALPINE-CVE-2019-13114

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.7AI score0.02115EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2019/06/30 11:15 p.m.5 views

CVE-2019-13114

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS5.5AI score0.02115EPSS
Exploits1References12
OSV
OSV
added 2019/06/30 12:0 a.m.2 views

UBUNTU-CVE-2019-13114

http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...

6.5CVSS6.8AI score0.02115EPSS
Exploits1References5
OSV
OSV
added 2014/12/19 8:59 p.m.3 views

DEBIAN-CVE-2013-7401

The parserequest function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service crash via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method...

5CVSS6.9AI score0.02817EPSS
Exploits1References1
Rows per page
Query Builder