Lucene search
K

282 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/16 12:0 a.m.2 views

SUSE SLED15: libprotobuf-lite25_1_0 / libprotobuf-lite25_1_0-32bit / etc (SUSE-SU-2025:02311-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02311-1 advisory. - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of...

8.2CVSS6.6AI score0.00281EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/16 12:0 a.m.3 views

SUSE SLES15 Security Update : protobuf (SUSE-SU-2025:02309-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02309-1 advisory. - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lea...

8.2CVSS6.9AI score0.00281EPSS
Exploits0References4
OSV
OSV
added 2025/07/11 12:24 p.m.5 views

OESA-2025-1801 protobuf security update

Security Fixes: Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of...

8.2CVSS7AI score0.00281EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/10 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7629-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS7.9AI score0.02772EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/07/10 12:0 a.m.3 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Protocol Buffers vulnerabilities (USN-7629-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7629-1 advisory. It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Python bindings. An...

8.7CVSS6.8AI score0.02772EPSS
Exploits1References3
OSV
OSV
added 2025/07/09 12:8 p.m.5 views

USN-7629-1 protobuf vulnerabilities

It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Python bindings. An attacker could possibly use this issue to cause a denial of service. CVE-2025-4565 It was discovered that Protocol Buffers incorrectly handled memory when receiving...

8.7CVSS6.8AI score0.02772EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2025/07/09 12:8 p.m.11 views

USN-7629-1: Protocol Buffers vulnerabilities

It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Python bindings. An attacker could possibly use this issue to cause a denial of service. CVE-2025-4565 It was discovered that Protocol Buffers incorrectly handled memory when receiving...

8.7CVSS6.7AI score0.02772EPSS
Exploits1
Fedora
Fedora
added 2025/06/11 2:46 a.m.7 views

[SECURITY] Fedora 42 Update: qt6-qtgrpc-6.9.1-1.fc42

Protocol Buffers Protobuf is a cross-platform data format used to serialize structured data. gRPC provides a remote procedure call framework based on Protobuf. Qt provides tooling and classes to use these technologies...

8.4CVSS7.4AI score0.00309EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/14 4:5 p.m.7 views

protobuf: StackOverflow vulnerability in Protocol Buffers

A flaw was found in Protocol Buffers protobuf. This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion...

8.7CVSS7.1AI score0.02772EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:26 a.m.15 views

protobuf: message parsing vulnerability in ProtocolBuffers

A parsing vulnerability for the MessageSet type in the ProtocolBuffers can lead to out of memory failures. A specially crafted message with multiple key-value per elements creates parsing issues, and can lead to a Denial of Service against services receiving unsanitized input...

7.5CVSS7.2AI score0.01191EPSS
Exploits0References7
OSV
OSV
added 2025/05/13 12:0 a.m.6 views

ALSA-2025:7138 Moderate: protobuf security update

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fixes: protobuf: message parsin...

7.5CVSS7AI score0.01191EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.9 views

Moderate: protobuf security update

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fixes: protobuf: message parsin...

7.5CVSS6.5AI score0.01191EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/04/17 12:0 a.m.20 views

Oracle MySQL Connectors CVE-2024-7254 (April 2025 CPU)

The 9.0.0 and 9.2.0 versions of MySQL Connectors installed on the remote host is affected by CVE-2024-7254 as referenced in the April 2025 CPU advisory. - Any project that parses untrusted Protocol Buffers data containing an arbitrary number of nested groups / series of SGROUP tags can corrupted ...

8.7CVSS7.4AI score0.02772EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 2:58 a.m.60 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.6

Summary In addition to updates of open source dependencies, the following security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.6 Vulnerability Details CVEID:CVE-2024-2398 DESCRIPTION: cURL libcurl is vulnerable to a denial of service, caused by a memory le...

9.8CVSS9.5AI score0.36081EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/04/15 12:0 a.m.17 views

Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : Protocol Buffers vulnerability (USN-7435-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7435-1 advisory. It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Java bindings. An attacker could...

8.7CVSS7.2AI score0.02772EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2025/04/14 1:31 p.m.73 views

USN-7435-1: Protocol Buffers vulnerability

It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Java bindings. An attacker could possibly use this issue to cause a denial of service...

8.7CVSS7.2AI score0.02772EPSS
Exploits1
CNNVD
CNNVD
added 2025/04/14 12:0 a.m.4 views

Meshtastic 安全漏洞

Meshtastic is a decentralized wireless off-grid mesh network LoRa protocol open-sourced by Meshtastic. A security vulnerability exists in Meshtastic versions prior to 2.6.2 that stems from a buffer overflow when processing invalid protobuf data, which could lead to remote code execution...

9.8CVSS7.8AI score0.00829EPSS
Exploits2References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/25 6:41 p.m.9 views

Security Bulletin: IBM Match 360 is vulnerable to a denial of service from IBM WebSphere Application Server Liberty vulnerability found in Google Protocol Buffers (CVE-2024-7254)

Summary IBM Match 360 is vulnerable to a denial service from IBM WebSphere Application Server Liberty use of vulnerable Google Protocol Buffers. This affects IBM WebSphere Application Server Liberty 20.0.0.12 - 24.0.0.10 with the specified features enabled. Any project that parses untrusted...

8.7CVSS7AI score0.02772EPSS
Exploits1Affected Software1
OSV
OSV
added 2025/03/20 10:44 a.m.3 views

SUSE-SU-2025:20155-1 Security update for protobuf

This update for protobuf fixes the following issues: - CVE-2024-2410: Fixed use after free when parsing JSON from a stream bsc1223947...

9.8CVSS5.8AI score0.00332EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/26 6:44 p.m.12 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in Protocol Buffers protobuf-go

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of Protocol Buffers protobuf-go. Vulnerability Details CVEID:CVE-2024-24786 DESCRIPTION: Protocol Buffers protobuf-go is vulnerable to a denial of service, caused by an infinite loop flaw in the rotojson.Unmarshal function wh...

7.5CVSS7.6AI score0.01262EPSS
Exploits0Affected Software1
Rows per page
Query Builder