Lucene search
K

183 matches found

Vulnrichment
Vulnrichment
added 2019/10/03 3:58 p.m.2 views

CVE-2018-16452

The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smbfdata via recursion...

6.8AI score0.04122EPSS
Exploits0References16
OSV
OSV
added 2019/04/23 2:29 p.m.3 views

UBUNTU-CVE-2018-20821

The parsing component in LibSass through 3.5.5 allows attackers to cause a denial-of-service uncontrolled recursion in Sass::Parser::parsecssvariablevalue in parser.cpp...

6.5CVSS7.3AI score0.02218EPSS
Exploits1References2
OSV
OSV
added 2018/10/06 2:29 p.m.2 views

DEBIAN-CVE-2018-18020

In QPDF 8.2.1, in libqpdf/QPDFWriter.cc, QPDFWriter::unparseObject and QPDFWriter::unparseChild have recursive calls for a long time, which allows remote attackers to cause a denial of service via a crafted PDF file...

3.3CVSS6.8AI score0.01281EPSS
Exploits1References1
OSV
OSV
added 2018/09/04 12:29 a.m.2 views

UBUNTU-CVE-2018-16426

Endless recursion when handling responses from an IAS-ECC card in iaseccselectfile in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs...

4.3CVSS6.4AI score0.00592EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2018/06/13 11:18 a.m.58 views

USN-3683-1: Bind vulnerability

Andrew Skalski discovered that Bind could incorrectly enable recursion when the "allow-recursion" setting wasn't specified. This issue could improperly permit recursion to all clients, contrary to expectations...

7.5CVSS6.5AI score0.1107EPSS
Exploits0
OSV
OSV
added 2018/05/18 7:29 p.m.4 views

UBUNTU-CVE-2018-11254

An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file, a related issue to CVE-2017-8054...

5.5CVSS6.8AI score0.01093EPSS
Exploits0References3
OSV
OSV
added 2017/06/06 12:0 a.m.3 views

UBUNTU-CVE-2017-7515

poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service...

5.5CVSS6.7AI score0.01146EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2017/04/22 10:59 p.m.32 views

CVE-2017-8054

The function PdfPagesTree::GetPageNodeFromArray in PdfPageTree.cpp:464 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service infinite recursion and application crash via a crafted PDF document...

5.5CVSS6.8AI score0.01146EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2017/04/05 12:0 a.m.5 views

PT-2017-10687 · Nextcloud · Nextcloud Server

Name of the Vulnerable Software and Affected Versions: Nextcloud Server versions prior to 9.0.55 Nextcloud Server versions prior to 10.0.2 Description: The issue allows an authenticated adversary to trigger an endless recursion in the application, leading to a potential Denial of Service attack d...

6.5CVSS6.2AI score0.0123EPSS
Exploits0References5
OSV
OSV
added 2017/02/17 5:59 p.m.5 views

UBUNTU-CVE-2016-6874

The arrayrecursive functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, related to recursion...

9.8CVSS7.3AI score0.0201EPSS
Exploits0References4
NVD
NVD
added 2016/12/12 2:59 a.m.15 views

CVE-2016-9626

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS6.3AI score0.02407EPSS
Exploits0References3
OSV
OSV
added 2016/12/12 2:59 a.m.6 views

CVE-2016-9439

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS6.8AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2016/11/29 3:49 p.m.24 views

CVE-2016-9626

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS4.7AI score0.02407EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2016/11/29 3:47 p.m.21 views

CVE-2016-9439

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page...

6.5CVSS4.7AI score0.01817EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/05/16 12:0 a.m.14 views

PT-2016-3397 · Php +2 · Php +2

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.4.44 PHP versions 5.5.x prior to 5.5.28 PHP versions 5.6.x prior to 5.6.12 Description: The issue is related to a stack consumption problem in the Zend/zend exceptions.c component of PHP, caused by insufficient input...

10CVSS8.6AI score0.53166EPSS
Exploits108References302
OSV
OSV
added 2016/05/03 2:20 p.m.11 views

SUSE-SU-2016:1204-1 Security update for libxml2

This update for libxml2 fixes two security issues: - libxml2 limits the number of recursions an XML document can contain so to protect against the 'Billion Laughs' denial-of-service attack. Unfortunately, the underlying counter was not incremented properly in all necessary locations. Therefore,...

7.5CVSS6.5AI score0.07025EPSS
Exploits1References4
OSV
OSV
added 2015/12/02 1:59 a.m.2 views

DEBIAN-CVE-2015-2328

PCRE before 8.36 mishandles the /?Ra|?1+/ pattern and related patterns with certain recursion, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object...

7.5CVSS9.3AI score0.05244EPSS
Exploits1References1
OSV
OSV
added 2015/09/28 8:59 p.m.5 views

CVE-2015-6806

The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service stack consumption via an escape sequence with a large repeat count value...

6.3AI score
Exploits0References9
EUVD
EUVD
added 2014/12/17 7:0 p.m.5 views

EUVD-2014-7962

softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service CPU consumption or crash via unspecified vectors...

5CVSS9.2AI score0.05926EPSS
Exploits0References22
NVD
NVD
added 2011/06/21 2:52 a.m.32 views

CVE-2011-1754

jabberd14 1.6.1.1 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...

5CVSS7AI score0.02271EPSS
Exploits0References5
Rows per page
Query Builder