Lucene search
K

94 matches found

OpenVAS
OpenVAS
added 2021/07/14 12:0 a.m.19 views

Node.js 12.x < 12.22.2, 14.x < 14.17.0 Multiple Vulnerabilities - Windows

Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...

7.5CVSS8.1AI score0.0472EPSS
Exploits2References1
OSV
OSV
added 2021/06/21 8:15 p.m.3 views

DEBIAN-CVE-2020-27511

An issue was discovered in the stripTags and unescapeHTML components in Prototype 1.7.3 where an attacker can cause a Regular Expression Denial of Service ReDOS through stripping crafted HTML tags...

7.5CVSS6.7AI score0.02455EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/03/23 12:0 a.m.2 views

Ruy Adorno hosted-git-info 安全漏洞

Ruy Adorno hosted-git-info is a Ruy Adorno open source application . It provides the ability to recognize and convert various git host URLs between protocols. hosted-git-info before 3.0.8 A security vulnerability exists that stems from vulnerability to a shortcutMatch regular expression denial of...

5.3CVSS7AI score0.03612EPSS
Exploits1References26
CVE
CVE
added 2021/03/19 3:30 a.m.282 views

CVE-2021-25292

Pillow (Python Imaging Library fork) prior to 8.1.1 is affected by a vulnerability in its PDF format parser that allows a regular expression DoS (ReDoS) via a crafted PDF file due to a catastrophic backtracking regex. This can impact availability as indicated by the CVSS vector in the CVE entry, ...

6.5CVSS7.4AI score0.01635EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/03/12 3:10 p.m.16 views

CVE-2021-23354 Regular Expression Denial of Service (ReDoS)

The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service ReDoS via the regex string /%?:\w.+|1-9\d$?0 +-\|\d+?.?|\d+?hlL?%bscdeEfFgGioOuxX/g in lib/printf.js. The vulnerable regular expression has cubic worst-case time complexity...

5.3CVSS7.7AI score0.02176EPSS
Exploits1References3
OSV
OSV
added 2021/03/12 2:7 p.m.5 views

USN-4754-3 python2.7, python3.7, python3.8 vulnerabilities

USN-4754-1 fixed vulnerabilities in Python. This update provides the corresponding updates for Ubuntu 18.04 and Ubuntu 20.04. In the case of Python 2.7 for 20.04, these additional fixes are included: It was dicovered that Python allowed remote attackers to cause a denial of service resource...

9.8CVSS7.1AI score0.23293EPSS
Exploits4References8
UbuntuCve
UbuntuCve
added 2021/03/03 12:0 a.m.28 views

CVE-2021-25292

An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS ReDoS attack via a crafted PDF file because of a catastrophic backtracking regex...

6.5CVSS6.8AI score0.01635EPSS
Exploits0References3
Snyk
Snyk
added 2021/02/11 5:25 p.m.4 views

Regular Expression Denial of Service (ReDoS)

Overview printf is a complete implementation of the printf C functions family for Node.JS, written in pure JavaScript. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the regex string /%?:\w.+|1-9\d$?0...

7.5CVSS6.7AI score0.02176EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/08/07 12:0 a.m.46 views

RHEL 8 : java-1.8.0-openjdk (RHSA-2020:1515)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1515 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References22
CVE
CVE
added 2020/06/04 5:15 p.m.103 views

CVE-2020-7661

CVE-2020-7661 affects the url-regex package (and related urlregex) with a Regular Expression Denial of Service caused by catastrophic backtracking when testing very long strings in String.test. Affected: url-regex/url-regex-based packages (Node.js/npm ecosystem) with versions prior to the fix. Im...

7.8CVSS7.3AI score0.02693EPSS
Exploits1References2Affected Software1
RedHat Linux
RedHat Linux
added 2020/05/20 4:46 p.m.104 views

Important: Red Hat Security Advisory: java-1.7.1-ibm security update

An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/05/20 4:26 p.m.109 views

Important: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2020/05/20 3:10 p.m.92 views

Important: Red Hat Security Advisory: java-1.7.1-ibm security update

An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/05/20 3:10 p.m.123 views

Important: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2020/05/20 12:0 a.m.50 views

RHEL 6 : java-1.8.0-ibm (RHSA-2020:2239)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2239 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2020/05/20 12:0 a.m.40 views

RHEL 6 : java-1.7.1-ibm (RHSA-2020:2236)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2236 advisory. IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IB...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2020/05/20 12:0 a.m.56 views

RHEL 8 : java-1.8.0-ibm (RHSA-2020:2241)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2241 advisory. IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE ...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2020/05/20 12:0 a.m.36 views

RHEL 7 : java-1.7.1-ibm (RHSA-2020:2238)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2238 advisory. IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IB...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References18
Cent OS
Cent OS
added 2020/04/30 7:53 p.m.427 views

java security update

CentOS Errata and Security Advisory CESA-2020:1512 An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detail...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References7
Cent OS
Cent OS
added 2020/04/30 7:52 p.m.84 views

java security update

CentOS Errata and Security Advisory CESA-2020:1509 An update for java-11-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References7
Rows per page
Query Builder