Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-44248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, the MQTT 5 header Properties section is parsed an...

7.5CVSS6.7AI score0.00455EPSS
Exploits0References3
OSV
OSV
added 2026/05/13 7:17 p.m.10 views

DEBIAN-CVE-2026-44248

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, the MQTT 5 header Properties section is parsed and buffered before any message size limit is applied. Specifically, in MqttDecoder, the decodeVariableHeader method is called before the...

7.5CVSS5.9AI score0.00455EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 6:23 p.m.37 views

CVE-2026-44248 Netty: Resource exhaustion in MqttDecoder

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, the MQTT 5 header Properties section is parsed and buffered before any message size limit is applied. Specifically, in MqttDecoder, the decodeVariableHeader method is called before the...

5.3CVSS0.00455EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.10 views

Netty 资源管理错误漏洞

Netty is a non-blocking I/O client-server framework from the Netty community. It is primarily used for developing Java network applications, such as protocol servers and clients. Versions of Netty prior to 4.2.13.Final and 4.1.133.Final contained a resource management vulnerability. This...

7.5CVSS6.6AI score0.00455EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-38679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: venus: Fix OOB read due to missing payload bound check Currently, The eventseqchanged handler processes a variable number of properties sent by the...

7.1CVSS6.9AI score0.00149EPSS
Exploits0References3
Debian
Debian
added 2016/06/25 3:58 p.m.26 views

[SECURITY] [DLA 525-1] gimp security update

Package : gimp Version : 2.8.2-2+deb7u2 CVE ID : CVE-2016-4994 It was discovered that there was a use-after-free vulnerability in the channel and layer properties parsing process in Gimp, the GNU Image Manipulation Program. For Debian 7 "Wheezy", this issue has been fixed in gimp version...

7.8CVSS7.8AI score0.03125EPSS
Exploits0
Rows per page
Query Builder