Lucene search
K

12 matches found

RustSec
RustSec
added 2026/03/11 12:0 p.m.13 views

`Authorization::value` and `WwwAuthenticate::value` can violate ASCII invariants

Authorization::value uses HeaderValue::value with the claim that the internal string is ASCII, but Authorization::new and Authorization::setcredentials accept arbitrary String credentials without validation. As a result, safe code can construct a header value containing non-ASCII UTF-8 while the...

5.7AI score
Exploits0
CVE
CVE
added 2026/01/05 11:16 p.m.32 views

CVE-2025-69225

CVE-2025-69225 affects the aiohttp project (versions 3.13.2 and below) where the Range header parser incorrectly allows non-ASCII decimals. The description notes no known impact but discloses a potential method for exploiting a request smuggling vulnerability; remediation is to upgrade to 3.13.3....

6.9CVSS6.3AI score0.00236EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.3 views

SUSE CVE-2019-10153

A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fencerhevm to exit with an exception. In cluster environments, this could lead to preventing automated recovery or otherwise denying service to...

5CVSS6.7AI score0.02171EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/12/14 9:31 p.m.4 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/09/09 6:18 a.m.12 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/08/18 9:54 a.m.6 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/08/18 9:13 a.m.6 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/02/08 9:6 a.m.3 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/01/25 4:34 p.m.3 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/01/25 4:32 p.m.3 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/01/25 4:19 p.m.2 views

undertow: special character in query results in server errors

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.8CVSS5.7AI score0.01269EPSS
Exploits0References4
OSV
OSV
added 2019/10/29 12:0 a.m.3 views

UBUNTU-CVE-2019-14833

A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for passwo...

5.4CVSS6.2AI score0.02084EPSS
Exploits0References4
Rows per page
Query Builder