Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
•added 2025/09/16 12:0 a.m.•8 views

PT-2025-40642

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's TLS implementation where the system may not properly abort a connection stream when invalid record headers are detected. Specifically, if the socket h...

6CVSS7.3AI score0.08942EPSS
Exploits1
CNNVD
CNNVD
•added 2024/01/23 12:0 a.m.•6 views

Silverstripe Framework Security Vulnerability

silverstripe framework is a set of CMS website frameworks. A security vulnerability exists in Silverstripe Framework versions 4.x prior to 4.13.39 and 5.x prior to 5.1.11, which stems from a user being able to access record headers that they are not authorized to view...

4.3CVSS6.7AI score0.00355EPSS
Exploits0References3
Veracode
Veracode
•added 2023/08/29 8:56 a.m.•189 views

Deserialization Of Untrusted Data

org.springframework.kafka, spring-kafka is vulnerable to Deserialization Of Untrusted Data. The vulnerability is caused by not setting ErrorHandlingDeserializer when checkDeserExWhenKeyNull or checkDeserExWhenValueNull container properties are set to true. An attacker can construct a malicious...

7.8CVSS6.8AI score0.02162EPSS
Exploits2References3Affected Software1
OSV
OSV
•added 2023/08/24 12:59 p.m.•27 views

CVE-2023-34040 Java Deserialization vulnerability in Spring-Kafka When Improperly Configured

In Spring for Apache Kafka 3.0.9 and earlier and versions 2.9.10 and earlier, a possible deserialization attack vector existed, but only if unusual configuration was applied. An attacker would have to construct a malicious serialized object in one of the deserialization exception record headers...

5.3CVSS7.1AI score0.02162EPSS
Exploits2References3
UbuntuCve
UbuntuCve
•added 2007/10/31 5:46 p.m.•22 views

CVE-2007-2263

Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF Flash file with malformed record headers...

9.3CVSS6.5AI score0.07299EPSS
Exploits0References1
NVD
NVD
•added 2007/10/31 5:46 p.m.•21 views

CVE-2007-2263

Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF Flash file with malformed record headers...

9.3CVSS8AI score0.07299EPSS
Exploits0References12
RedHat Linux
RedHat Linux
•added 2007/08/17 8:11 a.m.•3 views

realplayer swf file (flash media) heap overflow

Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF Flash file with malformed record headers...

9.3CVSS6.4AI score0.07299EPSS
Exploits0References4
Rows per page
Query Builder