Lucene search
K

115 matches found

OSV
OSV
added 2023/11/06 4:15 p.m.5 views

AZL-31880 CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28

Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHgeneratekey to generate an X9.42 DH key may experience long delays. Likewise, applications that use...

5.3CVSS6.5AI score0.04459EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.4 views

Apache InLong 代码问题漏洞

Apache InLong is the U.S. Apache Apache Foundation's one-stop massive data integration framework. Provides automated, secure and reliable data transfer capabilities. A code issue vulnerability exists in Apache InLong versions 1.4.0 to 1.8.0, which stems from the fact that some sensitive parameter...

9.8CVSS7AI score0.01009EPSS
Exploits0References2
CNVD
CNVD
added 2023/10/11 12:0 a.m.6 views

Huawei HarmonyOS Input Validation Error Vulnerability (CNVD-2023-97828)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an input validation error vulnerability that stems from improper parameter checks in the window module. An attacker could explo...

5.3CVSS6.6AI score0.00266EPSS
Exploits0References1
Veracode
Veracode
added 2023/09/12 10:32 p.m.27 views

OS Command Injection

cacti is vulnerable to OS Command Injection. The vulnerability exists in the snmp.php due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...

7.2CVSS7.3AI score0.82186EPSS
Exploits6References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/08/21 12:0 a.m.6 views

The vulnerability of the Zabbix universal monitoring system, related to insufficient validation of input data, allows a perpetrator to gain access to confidential information.

The vulnerability of the Zabbix universal monitoring system is related to the improper implementation of URL parameter checking before file reading. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...

5.9CVSS6.2AI score0.47772EPSS
Exploits0References6Affected Software4
Veracode
Veracode
added 2023/08/06 5:13 a.m.28 views

Command Injection

snapd is vulnerable to Command Injection. The vulnerability exists in the IOCTL system call handler due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...

10CVSS7.3AI score0.01447EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2023/08/05 12:0 a.m.6 views

Huawei HarmonyOS Path Traversal Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a path traversal vulnerability that stems from insufficient checksumming of parameters. An attacker can use this vulnerability ...

9.1CVSS6.9AI score0.00402EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/08/05 12:0 a.m.7 views

Huawei HarmonyOS Path Traversal Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a path traversal vulnerability that stems from insufficient checksumming of parameters. An attacker can use this vulnerability ...

9.1CVSS6.9AI score0.00402EPSS
Exploits0References5
Veracode
Veracode
added 2023/08/02 7:20 a.m.53 views

OS Command Injection

mlflow is vulnerable to OS Command Injection. The vulnerability exists in the cli due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...

7.8CVSS7.3AI score0.01195EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/08/02 1:56 a.m.5 views

SUSE CVE-2023-3817

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.8AI score0.02577EPSS
Exploits0References96
OSV
OSV
added 2023/07/31 4:15 p.m.10 views

AZL-37764 CVE-2023-3817 affecting package hvloader for versions less than 1.0.1-9

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.5AI score0.02577EPSS
Exploits0References1
OSV
OSV
added 2023/07/31 4:15 p.m.7 views

AZL-27815 CVE-2023-3817 affecting package openssl for versions less than 1.1.1k-26

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.5AI score0.02577EPSS
Exploits0References1
OSV
OSV
added 2023/07/19 12:15 p.m.2 views

DEBIAN-CVE-2023-3446

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...

5.3CVSS6.3AI score0.05533EPSS
Exploits0References1
OSV
OSV
added 2023/07/12 9:15 a.m.4 views

CVE-2023-33903

In FM service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed...

4.4CVSS5.9AI score0.00105EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.5 views

PT-2023-4011 · Unisoc · Unisoc Bluetooth Service

Name of the Vulnerable Software and Affected Versions: Unisoc bluetooth service affected versions not specified Description: The issue is related to a possible missing parameters check in the bluetooth service, which could lead to a local denial of service. System execution privileges are needed ...

4.4CVSS4.7AI score0.00084EPSS
Exploits0References5
OSV
OSV
added 2023/07/05 1:15 p.m.2 views

CVE-2021-46893

Vulnerability of unstrict data verification and parameter check. Successful exploitation of this vulnerability may affect integrity...

7.5CVSS5.8AI score0.00345EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.4 views

PT-2023-12613 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns unstrict data verification and parameter checks. Successful exploitation may impact integrity. Recommendations: At the moment, there is no information about a new...

7.5CVSS7.4AI score0.00345EPSS
Exploits0References4
OSV
OSV
added 2023/05/09 2:15 a.m.2 views

CVE-2022-48233

In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...

5.5CVSS5.8AI score0.00088EPSS
Exploits0References1
OSV
OSV
added 2023/05/09 2:15 a.m.7 views

CVE-2022-48234

In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...

5.5CVSS5.8AI score0.00088EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.5 views

UNISOC Chipsets 缓冲区错误漏洞

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in the UNISOC Chipsets FM service module due to a lack of parameter checking...

5.5CVSS5.7AI score0.00088EPSS
Exploits0References3
Rows per page
Query Builder