Security Bulletin: MongoDB Enterprised Advanced affected by: Improper Handling of Length Parameter Inconsistency (CVE-2025-14847)

Summary There is a vulnerability in MongoDB Server used in MongoDB Enterprised Advanced for IBM, involving CVE-2025-14847. The vulnerability has been addressed. Vulnerability Details CVEID:CVE-2025-14847 DESCRIPTION: Mismatched length fields in Zlib compressed protocol headers may allow a read of...

EUVD-2020-2530

Malware in sbrugna...

EUVD-2021-26777

Malware in sbrugna...

EUVD-2020-4244

Malware in sbrugna...

EUVD-2022-6948

Malicious code in bioql PyPI...

EUVD-2023-41279

Malicious code in bioql PyPI...

CVE-2025-5514

Improper Handling of Length Parameter Inconsistency vulnerability in web server function on Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to delay the processing of the web server function and prevent legitimate users from utilizing the web...

CVE-2023-37377

An issue was discovered in Samsung Exynos Mobile Processor and Wearable Processor Exynos 980, Exynos 850, Exynos 2100, and Exynos W920. Improper handling of length parameter inconsistency can cause incorrect packet filtering...

CVE-2020-11907

The Treck TCP/IP stack before 6.0.1.66 improperly handles a Length Parameter Inconsistency in TCP...

Siemens SIMATIC RTLS Gateways

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

Juniper Junos OS Vulnerability (JSA70588)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70588 advisory. - An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network...

Mitsubishi Electric MELSEC and MELIPC Series Improper Handling of Length Parameter Inconsistency (CVE-2021-20610)

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU Firmware versions 24 and prior, Mitsubishi Electric MELSEC iQ-R Series R04/08/16/32/120ENCPU Firmware versions 57 and prior, Mitsubishi Electric MELSEC iQ-R Series...

PYSEC-2022-292

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

CVE-2022-3290 Improper Handling of Length Parameter Inconsistency in ikus060/rdiffweb

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

CVE-2022-3272

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

CVE-2022-3272 Improper Handling of Length Parameter Inconsistency in ikus060/rdiffweb

Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8...

CVE-2022-2714

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

CVE-2022-2714

RosarioSIS (francoisjacquet/rosariosis) is affected by CVE-2022-2714 due to improper handling of length parameter inconsistencies. Public sources converge on affected versions being prior to 10.0 (Red Hat) and prior to 10.1 (GitHub advisory), indicating fixes are in 10.0/10.1 and later. A concret...

CVE-2022-2714 Improper Handling of Length Parameter Inconsistency in francoisjacquet/rosariosis

Improper Handling of Length Parameter Inconsistency in GitHub repository francoisjacquet/rosariosis prior to 10.0...

CVE-2021-38445 OCI OpenDDS Secure Improper Handling of Length Parameter Inconsistency

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...