Lucene search
K

462 matches found

Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.6 views

PT-2026-31822

Name of the Vulnerable Software and Affected Versions wolfSSL versions affected versions not specified Description A stack buffer overflow exists in wolfSSL's PKCS7 implementation within the wc PKCS7 DecryptOri function located in wolfcrypt/src/pkcs7.c. The issue occurs when processing a CMS...

5.9CVSS6.1AI score0.00175EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.7 views

PT-2026-31720

Name of the Vulnerable Software and Affected Versions wolfcrypt affected versions not specified Description Two potential heap out-of-bounds write locations existed in the DecodeObjectId function within wolfcrypt/src/asn.c. The first issue arises because a bounds check validates only one availabl...

2.3CVSS5.8AI score0.00283EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.4 views

PT-2026-31721

Name of the Vulnerable Software and Affected Versions wolfSSL versions prior to 5.9.1 Description Missing hash/digest size and Object Identifier OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than appropriate for the relevant key type, to be accepted b...

9.3CVSS6.6AI score0.00468EPSS
Exploits1References50
NVD
NVD
added 2026/04/06 8:16 a.m.3 views

CVE-2026-5636

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS0.00246EPSS
Exploits0References5
CVE
CVE
added 2026/04/06 8:0 a.m.10 views

CVE-2026-5636

CVE-2026-5636 affects PHPGurukul Online Shopping Portal Project 2.1, specifically an issue in the Parameter Handler for the /cancelorder.php endpoint. Manipulation of the argument oid enables SQL injection, with remote exploitation possible. The description notes that an exploit has been made pub...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/06 8:0 a.m.2 views

CVE-2026-5636 PHPGurukul Online Shopping Portal Project Parameter cancelorder.php sql injection

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.5 views

PT-2026-30581

A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS6.5AI score0.00246EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

PHPGurukul Online Shopping Portal Project SQL注入漏洞

The PHPGurukul Online Shopping Portal Project is an online shopping portal project of PHPGurukul Corporation. Version 2.1 of the PHPGurukul Online Shopping Portal Project has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter “oid” in the...

6.5CVSS6.7AI score0.00246EPSS
Exploits0References5
OSV
OSV
added 2026/03/27 2:7 p.m.4 views

OESA-2026-1778 python-pyasn1 security update

Abstract Syntax Notation One ASN.1 is a technology for exchanging structured data in a universally understood, hardware agnostic way. Many industrial, security and telephony applications heavily rely on ASN.1. The pyasn1 library implements ASN.1 support in pure-Python. Security Fixes: pyasn1 is a...

7.5CVSS6.9AI score0.00679EPSS
Exploits0References2
OSV
OSV
added 2026/03/27 2:7 p.m.4 views

OESA-2026-1777 python-pyasn1 security update

Abstract Syntax Notation One ASN.1 is a technology for exchanging structured data in a universally understood, hardware agnostic way. Many industrial, security and telephony applications heavily rely on ASN.1. The pyasn1 library implements ASN.1 support in pure-Python. Security Fixes: pyasn1 is a...

7.5CVSS7AI score0.00679EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.8 views

TencentOS Server 2: python-pyasn1 (TSSA-2026:0182)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0182 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

7.5CVSS6.8AI score0.00679EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/12 12:0 a.m.6 views

MiracleLinux 8 : python-pyasn1-0.3.7-6.el8_10.1 (AXSA:2026-286:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-286:02 advisory. pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID CVE-2026-23490 Tenable has extracted the preceding description block...

7.5CVSS5.9AI score0.00679EPSS
Exploits0References2
OSV
OSV
added 2026/03/11 12:1 p.m.6 views

RLSA-2026:4146 Important: python-pyasn1 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS7.1AI score0.00679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/10 5:20 a.m.4 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/03/10 5:20 a.m.9 views

Important: Red Hat Security Advisory: python-pyasn1 security update

An update for python-pyasn1 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/10 2:43 a.m.3 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/03/10 2:43 a.m.9 views

Important: Red Hat Security Advisory: python-pyasn1 security update

An update for python-pyasn1 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/10 1:54 a.m.4 views

Important: Red Hat Security Advisory: python-pyasn1 security update

An update for python-pyasn1 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/10 1:1 a.m.6 views

Important: Red Hat Security Advisory: python-pyasn1 security update

An update for python-pyasn1 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scori...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/10 12:43 a.m.2 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
Rows per page
Query Builder