CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

OSV•added 2024/08/22 7:29 p.m.•17 views

BIT-KEYDB-2021-32672 Vulnerability in Lua Debugger in Redis

Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support 3.2 or newer...

5.3CVSS6AI score0.00284EPSS

Exploits0References10

OSV•added 2024/05/07 3:15 p.m.•1 views

UBUNTU-CVE-2024-32663

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, a small amount of HTTP/2 traffic can lead to Suricata using a large amount of memory. The issue has been addressed in Suricata 7.0.5 and 6.0.19...

7.5CVSS5.8AI score0.00357EPSS

Exploits0References9

OSV•added 2024/03/06 11:8 a.m.•30 views

BIT-REDIS-2021-32672 Vulnerability in Lua Debugger in Redis

5.3CVSS6AI score0.00284EPSS

Exploits0References10

OSV•added 2024/02/26 4:27 p.m.•1 views

DEBIAN-CVE-2024-23836

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to versions 6.0.16 and 7.0.3, an attacker can craft traffic to cause Suricata to use far more CPU and memory for processing the traffic than needed, which can lead to extrem...

7.5CVSS7.6AI score0.00847EPSS

Exploits0References1

NVD•added 2024/02/26 4:27 p.m.•13 views

CVE-2024-23836

7.5CVSS7.3AI score0.00847EPSS

Exploits0References19

UbuntuCve•added 2024/02/26 4:27 p.m.•34 views

CVE-2024-23836

7.5CVSS7.1AI score0.00847EPSS

Exploits0References28

OSV•added 2024/02/26 4:27 p.m.•0 views

UBUNTU-CVE-2024-23836

7.5CVSS5.8AI score0.00847EPSS

Exploits0References29

OSV•added 2024/02/26 3:44 p.m.•12 views

CVE-2024-23836 crafted traffic can cause denial of service

7.5CVSS7.3AI score0.00847EPSS

Exploits0References21

Tenable Nessus•added 2023/10/16 12:0 a.m.•43 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : Redis vulnerabilities (USN-5221-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5221-1 advisory. It was discovered that Redis incorrectly handled certain specially crafted Lua scripts. A remote attacker could possibly use this...

8.8CVSS6.9AI score0.05836EPSS

Exploits0References10

SUSE CVE•added 2023/02/15 4:40 a.m.•1 views

SUSE CVE-2017-13037

The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ipprintts...

5.3CVSS7.5AI score0.0136EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 3:59 a.m.•1 views

SUSE CVE-2020-11049

In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0...

5.5CVSS6.9AI score0.00168EPSS

Exploits1References3

CNVD•added 2022/09/17 12:0 a.m.•4 views

Wireshark Denial of Service Vulnerability (CNVD-2023-62295)

Wireshark formerly Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark suffers from a denial-of-service vulnerability that stems from an infinite loop in its...

6.3CVSS6.8AI score0.00022EPSS

Exploits1References1

CNNVD•added 2021/12/30 12:0 a.m.•1 views

Wireshark 注入漏洞

Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Gryphon dissector is one of the Gryphon protocol parsers. An attacker could exploit this vulnerability to cause a denial of service via packet injection or specially crafted capture files...

7.5CVSS8.3AI score0.00053EPSS

Exploits1References13

Tenable Nessus•added 2021/11/24 12:0 a.m.•40 views

SUSE SLES15 Security Update : redis (SUSE-SU-2021:3772-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3772-1 advisory. - Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can...

9CVSS7.3AI score0.05836EPSS

Exploits0References24

Tenable Nessus•added 2021/11/24 12:0 a.m.•47 views

openSUSE 15 Security Update : redis (openSUSE-SU-2021:3772-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3772-1 advisory. - Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis...

9CVSS7.2AI score0.05836EPSS

Exploits0References24

Tenable Nessus•added 2021/11/06 12:0 a.m.•52 views

Debian DSA-5001-1 : redis - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5001 advisory. Multiple vulnerabilities were discovered in Redis, a persistent key-value database, which could result in denial of service or the execution of arbitrary cod...

9CVSS7AI score0.05836EPSS

Exploits0References22

OpenVAS•added 2021/10/06 12:0 a.m.•31 views

Redis Lua Debugger Vulnerability (GHSA-9mj9-xx53-qmxm)

Redis is prone to a vulnerability in the Lua Debugger. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; if descripti...

5.3CVSS6.2AI score0.00284EPSS

Exploits0References1