Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/06/22 4:33 p.m.32 views

CVE-2026-54274 AIOHTTP: Incomplete websocket frame payloads bypass memory limits

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large incomplete websocket frame payloads, it may be possible to bypass the usual size limits on memory use. This vulnerability is fixed in 3.14.1...

8.7CVSS0.00305EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-54278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, during cleanup it is possible for a compressed request body to ...

8.7CVSS5.9AI score0.00279EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.4 views

PT-2024-4076 · Helm +2 · Helm +2

Name of the Vulnerable Software and Affected Versions: Helm versions prior to 3.14.1 Description: The issue is related to the Helm client or SDK saving a chart outside its expected directory based on changes in the relative path within the Chart.yaml file. This occurs when the chart's name includ...

7.5CVSS7.8AI score0.00926EPSS
Exploits0References38
OSV
OSV
added 2019/12/04 7:15 p.m.2 views

CVE-2019-19229

admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 HM 1.12.1 allows action=download&filename= Directory Traversal...

6.5CVSS6.9AI score0.02314EPSS
Exploits3References3
Rows per page
Query Builder