Lucene search
+L

6 matches found

cve
cve
added 2026/07/08 8:47 p.m.11 views

CVE-2026-49866

CVE-2026-49866 affects the JavaScript libp2p implementation, specifically the @libp2p/gossipsub component. The root cause is defaultDecodeRpcLimits allowing maxIhaveMessageIDs and maxIwantMessageIDs to be Infinity prior to v16.0.0, enabling oversized IHAVE/IWANT control message arrays in message/...

7.5CVSS6AI score0.00446EPSS
Exploits0References4
euvd
euvd
added 2026/07/02 7:38 p.m.7 views

EUVD-2026-41420

LobeChat before version 2.2.10-canary.15 contains a regular expression denial of service ReDoS vulnerability that allows authenticated attackers to block the Node.js event loop by supplying a catastrophic-backtracking pattern in a GitHub repository URL path during skill import. Attackers can craf...

7.1CVSS5.8AI score0.00305EPSS
Exploits0References5
susecve
susecve
added 2026/06/13 2:30 a.m.14 views

SUSE CVE-2025-71330

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attackers can craft an ICNS buffer containing valid magic bytes and a zero-valued entry length field to...

8.7CVSS5.7AI score0.0043EPSS
Exploits1References3
cve
cve
added 2026/06/10 1:2 p.m.43 views

CVE-2025-71330

The CVE-2025-71330 issue affects image-size

8.7CVSS5.8AI score0.0043EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2026/06/10 1:2 p.m.40 views

CVE-2025-71330 image-size 2.0.2 Denial of Service via Malformed ICNS Image Parsing

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attackers can craft an ICNS buffer containing valid magic bytes and a zero-valued entry length field to...

8.7CVSS0.0043EPSS
Exploits1References3
euvd
euvd
added 2026/03/10 11:57 p.m.7 views

EUVD-2026-10895

file-type affected by infinite loop in ASF parser on malformed input with zero-size sub-header...

5.3CVSS5.8AI score0.00325EPSS
Exploits0References3
Rows per page
Query Builder