Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Snyk
Snykadded 2026/06/10 10:15 p.m.7 views

Memory Allocation with Excessive Size Value

Overview kafka-python is a Pure Python client for Apache Kafka Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the receivebytes function in the protocol parser. An attacker can exhaust system memory or cause connections to hang by sending a...

8.7CVSS5.5AI score0.00348EPSS
Exploits0References2
CVE
CVEadded 2026/06/10 8:13 p.m.21 views

CVE-2026-10142

CVE-2026-10142 affects kafka-python prior to 2.3.2. The vulnerability resides in the protocol parser, where an attacker can send a crafted 4-byte frame length via receive_bytes() without bounds validation. This can cause a multi-gigabyte memory allocation or an uncaught ValueError, leaving the co...

8.7CVSS5.5AI score0.00348EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2026/06/10 8:13 p.m.7 views

CVE-2026-10142

kafka-python prior to 2.3.2 contains a denial-of-service vulnerability in the protocol parser that allows a malicious broker or machine-in-the-middle attacker to exhaust memory or hang connections by sending a crafted 4-byte frame length value without bounds validation. Attackers can send a...

8.7CVSS5.3AI score0.00348EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2025/05/13 8:28 a.m.2 views

kernel: vsock: Update rx_bytes on read_skb()

In the Linux kernel, the following vulnerability has been resolved: vsock: Update rxbytes on readskb Make sure virtiotransportincrxpkt and virtiotransportdecrxpkt calls are balanced i.e. virtiovsocksock::rxbytes doesn't lie after vsocktransport::readskb. While here, also inform the peer that we'v...

5.5CVSS6.7AI score0.00213EPSS
Exploits0References5
Microsoft CVE
Microsoft CVEadded 2025/01/29 8:0 a.m.3 views

vsock: Update rx_bytes on read_skb()

...

5.5CVSS6.9AI score0.00213EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2024/11/08 3:48 a.m.2 views

SUSE CVE-2024-50169

In the Linux kernel, the following vulnerability has been resolved: vsock: Update rxbytes on readskb Make sure virtiotransportincrxpkt and virtiotransportdecrxpkt calls are balanced i.e. virtiovsocksock::rxbytes doesn't lie after vsocktransport::readskb. While here, also inform the peer that we'v...

7.7AI score0.00213EPSS
Exploits0References14
OSV
OSVadded 2024/11/07 10:15 a.m.2 views

DEBIAN-CVE-2024-50169

In the Linux kernel, the following vulnerability has been resolved: vsock: Update rxbytes on readskb Make sure virtiotransportincrxpkt and virtiotransportdecrxpkt calls are balanced i.e. virtiovsocksock::rxbytes doesn't lie after vsocktransport::readskb. While here, also inform the peer that we'v...

5.5CVSS5.6AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2024/01/01 6:15 p.m.3 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.5CVSS7.3AI score0.00595EPSS
Exploits3References2
OSV
OSVadded 2024/01/01 6:15 p.m.4 views

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeAReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications 1.2.0, and thus c...

7.5CVSS6.4AI score0.00595EPSS
Exploits3References1
Rows per page
Query Builder