Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/04/03 3:40 a.m.4 views

wisp has Allocation of Resources Without Limits or Throttling

Summary A multipart form parsing bug allows any unauthenticated user to bypass configured request size limits and trigger a denial of service by exhausting server memory or disk. Details The issue is in the multipart parsing logic, specifically in multipartbody and multipartheaders. When parsing...

8.7CVSS5.9AI score0.00622EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/04/03 3:40 a.m.7 views

GHSA-8645-P2V4-73R2 wisp has Allocation of Resources Without Limits or Throttling

Summary A multipart form parsing bug allows any unauthenticated user to bypass configured request size limits and trigger a denial of service by exhausting server memory or disk. Details The issue is in the multipart parsing logic, specifically in multipartbody and multipartheaders. When parsing...

8.7CVSS5.9AI score0.00622EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/02 2:1 p.m.7 views

CVE-2026-1761

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.6CVSS6.7AI score0.00947EPSS
Exploits0References23
OSV
OSV
added 2022/01/27 12:15 a.m.4 views

ALPINE-CVE-2022-21723

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions 2.11.1 and prior, parsing an incoming SIP message that contains a malformed multipart can potentially cause...

9.1CVSS7AI score0.04478EPSS
Exploits0References1
Rows per page
Query Builder