CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-2567

Malware in sbrugna...

7.5CVSS6.8AI score0.00147EPSS

Exploits0References58

Tenable Nessus•added 2024/04/28 12:0 a.m.•29 views

RHEL 7 / 8 : OpenShift Virtualization 4.9.0 RPMs (RHSA-2021:4103)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4103 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains...

7.5CVSS7.2AI score0.00614EPSS

Exploits0References12

IBM Security Bulletins•added 2023/05/15 12:7 p.m.•32 views

Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager.

Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-16845 DESCRIPTION: Go Language is vulnerable to a denial of service, caused by an infinite read loop in ReadUvarint and ReadVarint in encoding/binary. By sending a specially-crafted...

7.5CVSS7.5AI score0.00147EPSS

Exploits0Affected Software1

OSV•added 2022/07/01 8:11 p.m.•30 views

GO-2021-0142 Unbounded read from invalid inputs in encoding/binary

ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs. Certain invalid inputs to ReadUvarint or ReadVarint can cause these functions to read an unlimited number of bytes from the ByteReader parameter before returning an error. This can lead to processing more input...

7.5CVSS7.7AI score0.00147EPSS

OSV•added 2022/01/13 3:44 a.m.•31 views

GO-2021-0225

Certain invalid inputs to ReadUvarint or ReadVarint could cause those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This could lead to processing more input than expected when the caller is reading directly from a network and depends on...

1.6AI score

OSV•added 2021/12/16 7:16 p.m.•33 views

GHSA-Q6GQ-997W-F55G Withdrawn Advisory: Infinite loop in xz

Withdrawn Advisory This advisory has been withdrawn because alerts cannot be issued for the Go standard library at this time. Original Description Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...

7.5CVSS6.9AI score0.00147EPSS

Exploits0References18

RedHat Linux•added 2021/11/02 5:36 p.m.•1 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

RedHat Linux•added 2021/04/13 11:35 p.m.•101 views

Low: Red Hat Security Advisory: OpenShift Container Platform 4.5.37 security update

Red Hat OpenShift Container Platform release 4.5.37 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which give...

7.5CVSS6.8AI score0.00614EPSS

Tenable Nessus•added 2021/04/13 12:0 a.m.•51 views

RHEL 7 / 8 : OpenShift Container Platform 4.5.37 (RHSA-2021:1016)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1016 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

RedHat Linux•added 2021/03/11 4:48 a.m.•1 views

Exploits0References8

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

RedHat Linux•added 2021/01/25 7:45 p.m.•3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

Tenable Nessus•added 2020/12/22 12:0 a.m.•38 views

RHEL 8 : Red Hat OpenShift Service Mesh 1.1.11 (RHSA-2020:5649)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5649 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

RedHat Linux•added 2020/12/17 5:43 a.m.•1 views

Exploits0References7

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

Tenable Nessus•added 2020/11/24 12:0 a.m.•40 views

RHEL 7 / 8 : OpenShift Container Platform 4.5.20 packages and golang (RHSA-2020:5119)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5119 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

Tenable Nessus•added 2020/11/23 12:0 a.m.•43 views

Exploits0References8

Debian DLA-2460-1 : golang-1.8 security update

Three issues have been found in golang-1.8, a Go programming language compiler version 1.8 CVE-2020-15586 Using the 100-continue in HTTP headers received by a net/http/Server can lead to a data race involving the connection's buffered writer. CVE-2020-16845 Certain invalid inputs to ReadUvarint o...

7.5CVSS7.1AI score0.00614EPSS

Exploits0References6

OpenVAS•added 2020/11/22 12:0 a.m.•26 views

Debian: Security Advisory (DLA-2459-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...