Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.6 views

CVE-2024-34708

Directus is a real-time API and App dashboard for managing SQL database content. A user with permission to view any collection using redacted hashed fields can get access the raw stored version using the alias functionality on the API. Normally, these redacted fields will return however if we...

4.9CVSS7AI score0.00757EPSS
Exploits1References1
OSV
OSV
added 2022/07/06 7:24 p.m.19 views

GHSA-HM37-9XH2-Q499 Possible leak of key's raw field if declared length is incorrect

Impact If a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker able to modify the declared length of a key's sensitive field can thus expose the raw value of that field. Patches Upgrade to version 0.0.6, which...

7.7CVSS6.7AI score0.01239EPSS
Exploits1References8
Prion
Prion
added 2022/07/06 6:15 p.m.12 views

Design/Logic Flaw

opensshkeyparser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files. In versions prior to 0.0.6 if a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker...

4CVSS6.3AI score0.01239EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2022/07/06 6:15 p.m.41 views

PYSEC-2022-233

opensshkeyparser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files. In versions prior to 0.0.6 if a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker...

7.7CVSS2.7AI score0.01239EPSS
Exploits1References5
PyPA
PyPA
added 2022/07/06 6:15 p.m.8 views

PYSEC-2022-233

opensshkeyparser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files. In versions prior to 0.0.6 if a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker...

7.7CVSS6.8AI score0.01239EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2022/07/06 5:30 p.m.8 views

CVE-2022-31124 Possible leak of key's raw field if declared length is incorrect in openssh_key_parser

opensshkeyparser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files. In versions prior to 0.0.6 if a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker...

7.7CVSS7.7AI score0.01239EPSS
Exploits1References5
Rows per page
Query Builder