Lucene search
K

117 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/22 4:40 p.m.5 views

CVE-2026-54280

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client disconnects in the middle of a write. If a payload is using an open file or similar limited resource, then an attacker may be able to cause...

6.3CVSS5.8AI score0.00281EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/22 4:40 p.m.35 views

CVE-2026-54280

CVE-2026-54280 affects the AIOHTTP project (async HTTP client/server for asyncio/Python). Before version 3.14.1, payload resources may not be closed correctly if a client disconnects mid-write, allowing temporary resource starvation when a payload uses a limited resource (e.g., open files). The i...

7.5CVSS5.8AI score0.00281EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-54280

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client...

7.5CVSS5.9AI score0.00281EPSS
Exploits0References3
OSV
OSV
added 2026/06/15 8:10 p.m.6 views

GHSA-9X8Q-7H8H-WCW9 aiohttp: Payload Response Resources Are Not Closed After Mid-Body Disconnect

Summary Payload resources are not closed correctly when a client disconnects in the middle of a write. Impact If a payload is using an open file or similar limited resource, then an attacker may be able to cause resource starvation temporarily until garbage collection or similar closes the file...

6.3CVSS5.3AI score0.00281EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/06/15 8:10 p.m.15 views

aiohttp: Payload Response Resources Are Not Closed After Mid-Body Disconnect

Summary Payload resources are not closed correctly when a client disconnects in the middle of a write. Impact If a payload is using an open file or similar limited resource, then an attacker may be able to cause resource starvation temporarily until garbage collection or similar closes the file...

7.5CVSS5.3AI score0.00281EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.9 views

PT-2026-49594

Name of the Vulnerable Software and Affected Versions AIOHTTP versions prior to 3.14.1 Description Payload resources are not closed correctly when a client disconnects during a write operation. If a payload utilizes an open file or other limited resources, an attacker can cause temporary resource...

7.5CVSS5.8AI score0.00281EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2026/05/22 7:0 a.m.8 views

CVE-2026-5072 ptp: Potential Denial of Service via PTP Interval Shift

A bitwise shift vulnerability in Zephyr's PTP subsystem allows a remote attacker to cause undefined behavior and potential system crashes. An attacker sends a crafted PTPMSGMANAGEMENT message to set an unvalidated negative logannounceinterval value in the port's data set. When a subsequent...

5.9AI score0.00187EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004345)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004345 advisory. An incorrect read request flaw was found in the Infrared Transceiver USB driver in the Linux kernel. This issue occurs when a user attaches a malicious USB device. A...

4.6CVSS6.4AI score0.0046EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2003-0795

Malware in sbrugna...

5CVSS6.4AI score0.01384EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-16230

Malware in sbrugna...

7.5CVSS7.5AI score0.01044EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-0659

Malware in sbrugna...

7.5CVSS7.6AI score0.02664EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-2055

Malware in sbrugna...

6.5CVSS6.5AI score0.01658EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-43239

Malicious code in bioql PyPI...

4.6CVSS6.8AI score0.0046EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-6588

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.00212EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 8:35 p.m.4 views

CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS6.2AI score0.0042EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/23 8:35 p.m.8 views

CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS0.0042EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/22 9:36 p.m.4 views

CVE-2025-53538 Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions 7.0.10 and below and 8.0.0-beta1 through 8.0.0-rc1, mishandling of data on HTTP2 stream 0 can lead to uncontrolled memory usage, leading to loss of...

7.5CVSS6.2AI score0.00432EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/22 9:36 p.m.8 views

CVE-2025-53538 Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions 7.0.10 and below and 8.0.0-beta1 through 8.0.0-rc1, mishandling of data on HTTP2 stream 0 can lead to uncontrolled memory usage, leading to loss of...

7.5CVSS0.00432EPSS
Exploits0References3
CVE
CVE
added 2025/07/22 9:36 p.m.52 views

CVE-2025-53538

CVE-2025-53538 affects Suricata (IDS/IPS/NSM engine by OISF) in versions 7.0.10 and earlier and 8.0.0-beta1 through 8.0.0-rc1. The root cause is mishandling of data on HTTP/2 stream 0, causing uncontrolled memory usage and loss of visibility. The issue scores as CVSS v3.1/7.5 (HIGH) with NETWORK ...

7.5CVSS7AI score0.00432EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 p.m.6 views

CVE-2021-1121

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service...

5.5CVSS6.5AI score0.00212EPSS
Exploits0References1
Rows per page
Query Builder