Lucene search
K

6 matches found

OSV
OSV
added 2025/03/01 10:12 a.m.8 views

CLSA-2025-1740823970 bind: Fix of CVE-2024-11187

CVE-2024-11187: Limit the additional processing for large RDATA sets...

7.5CVSS6.7AI score0.14614EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 2:12 a.m.6 views

CVE-2025-21741 usbnet: ipheth: fix DPE OoB read

In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: fix DPE OoB read Fix an out-of-bounds DPE read, limit the number of processed DPEs to the amount that fits into the fixed-size NDP16 header...

7.1CVSS6.6AI score0.00208EPSS
Exploits0References7
OSV
OSV
added 2024/12/16 7:15 a.m.9 views

BIT-MATTERMOST-2024-2446

Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to limit the number of @-mentions processed per message, allowing an authenticated attacker to crash the client applications of other users via large, crafted messages...

4.3CVSS4.4AI score0.00446EPSS
Exploits0References2
Amazon
Amazon
added 2024/05/28 12:0 a.m.4 views

Medium: golang

Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...

7.5CVSS6.6AI score0.91969EPSS
Exploits1
OSV
OSV
added 2024/03/15 10:15 a.m.8 views

CVE-2024-2446

Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to limit the number of @-mentions processed per message, allowing an authenticated attacker to crash the client applications of other users via large, crafted messages...

4.3CVSS4.5AI score
Exploits0References1
Apache Tomcat
Apache Tomcat
added 2023/02/23 12:0 a.m.79 views

Fixed in Apache Tomcat 11.0.0-M3

Important: Apache Tomcat information disclosure CVE-2023-28708 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Tomcat did not include the secure attribute. This could result in th...

7.5CVSS6.6AI score0.46836EPSS
Exploits1Affected Software1
Rows per page
Query Builder