Lucene search
K

40 matches found

Cisco
Cisco
added 2025/08/27 4:0 p.m.7 views

Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability

A vulnerability in the Intermediate System-to-Intermediate System IS-IS feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly...

7.4CVSS7.2AI score0.00266EPSS
Exploits0References1
OSV
OSV
added 2025/02/20 12:15 p.m.9 views

CVE-2025-0868

A vulnerability, that could result in Remote Code Execution RCE, has been found in DocsGPT. Due to improper parsing of JSON data using eval an unauthorized attacker could send arbitrary Python code to be executed via /api/remote endpoint.. This issue affects DocsGPT: from 0.8.1 through 0.12.0...

9.3CVSS8.6AI score0.15099EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2024/11/20 12:0 a.m.15 views

CVE-2024-48986

An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the length of certain hci packets by reading a byte from its header. Certain events cause a callback, the logic for which allocates a buffer the length of which is determined by looking up the event type in...

7.1AI score0.00463EPSS
Exploits0References2
CVE
CVE
added 2024/11/20 12:0 a.m.49 views

CVE-2024-48982

MBed OS 6.16.0 contains a vulnerability in the HCI packet length parsing. The hci parsing software reads a length byte from the packet header and assumes it is >= 3, but does not enforce this. If length

7.5CVSS7.3AI score0.00463EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/11/20 12:0 a.m.51 views

CVE-2024-48984

CVE-2024-48984 affects MBed OS 6.16.0. The issue lies in HCI report parsing: the code dynamically determines the length of a reports list from an input byte and uses that to locate subsequent reports. It does not verify that these addresses stay within the target buffer passed to hciEvtProcessLeE...

9.8CVSS7.3AI score0.00534EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/11/20 12:0 a.m.16 views

CVE-2024-48984

An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing software dynamically determines the length of a list of reports by reading a byte from an input stream. It then fetches the length of the first report, uses it to calculate the beginning of the second report, etc...

0.00534EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/20 12:0 a.m.29 views

CVE-2024-48986

An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the length of certain hci packets by reading a byte from its header. Certain events cause a callback, the logic for which allocates a buffer the length of which is determined by looking up the event type in...

0.00463EPSS
Exploits0References2
GitLab Advisory Database
GitLab Advisory Database
added 2022/12/26 12:0 a.m.34 views

Out-of-bounds Read

golang.org/x/text/language in golang.org/x/text before 0.3.7 can panic with an out-of-bounds read during BCP 47 language tag parsing. Index calculation is mishandled. If parsing untrusted user input, this can be used as a vector for a denial-of-service attack...

7.5CVSS2.7AI score0.01356EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2019/07/25 2:15 p.m.14 views

CVE-2019-1010182

yaml-rust 0.4.0 and earlier is affected by: Uncontrolled Recursion. The impact is: Denial of service by impossible to catch abort. The component is: YamlLoader::loadfromstr function. The attack vector is: Parsing of a malicious YAML document. The fixed version is: 0.4.1 and later...

6.5CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2016/11/25 5:4 p.m.9 views

MGASA-2016-0397 Updated perl-Email-Address packages fix security vulnerability

Pali Rohár discovered a possible DoS attack in any software which uses the Email::Address Perl module for parsing string input to a list of email addresses. Note that this issue has only been partially mitigated in Email::Address itself...

7.8CVSS7.9AI score0.03072EPSS
Exploits0References3
securityvulns
securityvulns
added 2015/03/18 12:0 a.m.49 views

libav / ffmpeg multiple security vulnerabilities

Multiple memory corruptions on different media formats parsing...

7.5CVSS3.9AI score0.03143EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2015/03/18 12:0 a.m.165 views

libmagic / file / fileinfo / PHP security vulnerabilities

Vulnerabilities in ELF parsing...

7.5CVSS3.1AI score0.05926EPSS
Exploits0References2
securityvulns
securityvulns
added 2015/02/23 12:0 a.m.35 views

Mooplayer buffer overflow

Buffer overflow on .m3u files parsing...

4.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2015/02/02 12:0 a.m.49 views

Google Chrome / Chromium multiple security vulnerabilities

Multiple vulnerabilities on HTML and different formats parsing...

7.5CVSS1.6AI score0.04339EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2011/08/03 12:0 a.m.40 views

LibAVCodec / FFMpeg / VLC index array overflow

Index array overflow on AMV files parsing...

6.8CVSS5.4AI score0.02228EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2010/09/12 12:0 a.m.46 views

quagga BGP daemon DoS

Few DoS conditions on BGP traffic parsing...

6.5CVSS2.9AI score0.04041EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/09/02 12:0 a.m.26 views

bogofilter DoS

Crash on message parsing...

5CVSS3AI score0.03441EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/09/02 12:0 a.m.29 views

libgdiplus / Mono multiple integer overflows

Multiple integer overflows on BPM, JPEG, TIFF parsing...

6.8CVSS4.8AI score0.01914EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/07/13 12:0 a.m.36 views

python-cjson buffer overflow

Buffer overflow on python script parsing...

6.8CVSS4AI score0.01665EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.26 views

Xerox Workcenter 4150 DoS

assert on PJL parsing...

3.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder