Lucene search
+L

8 matches found

OSV
OSV
added 2026/02/26 3:16 p.m.5 views

BIT-NEO4J-2026-1337 Insufficient escaping of unicode characters in query log

Insufficient escaping of unicode characters in query log in Neo4j Enterprise and Community editions prior to 2026.01 can lead to XSS if the user opens the logs in a tool that treats them as HTML. There is no security impact on Neo4j products, but this advisory is released as a precaution to treat...

5.4CVSS5.5AI score0.00207EPSS
Exploits2References2
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.11 views

Neo4j Enterprise Edition和Neo4j Community Edition 安全漏洞

Neo4j Enterprise Edition and Neo4j Community Edition are both graph database products developed by the American company Neo4j. Versions of Neo4j Enterprise and Neo4j Community before 2026.01.3 and versions prior to 5.26.21 have security vulnerabilities. These vulnerabilities stem from incorrect...

4.8CVSS5.8AI score0.00144EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/31 12:30 p.m.6 views

EUVD-2025-37324

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

6.3CVSS6.2AI score0.00294EPSS
Exploits0References2
NVD
NVD
added 2025/10/31 11:15 a.m.6 views

CVE-2025-11602

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

6.3CVSS0.00294EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/31 10:20 a.m.4 views

CVE-2025-11602 Untargeted information leak in Bolt protocol handshake

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

6.3CVSS6.3AI score0.00294EPSS
Exploits0References1
OSV
OSV
added 2025/10/31 10:20 a.m.2 views

CVE-2025-11602 Untargeted information leak in Bolt protocol handshake

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

6.3CVSS5.9AI score0.00294EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/31 12:0 a.m.4 views

Neo4j Enterprise Edition和Neo4j Community Edition 安全漏洞

Neo4j Enterprise Edition and Neo4j Community Edition are both graph databases from Neo4j USA. A security vulnerability exists in Neo4j Enterprise Edition and Neo4j Community Edition that stems from information disclosure during the bolt protocol handshake, which could lead to an attacker obtainin...

6.3CVSS5.9AI score0.00294EPSS
Exploits0References2
Kitploit
Kitploit
added 2020/10/06 11:30 a.m.108 views

IoTMap - Research Project On Heterogeneous IoT Protocols Modelling

IoTMap is a tool that models IoT networks using one or multiple protocols simultaneously. This is work in progress, as a part of a PhD thesis on Internet Of Things security. This repository is regularly updated as new results are obtained. This project supports 3 protocol as this time : BLE, ZigB...

7.3AI score
Exploits0References3
Rows per page
Query Builder