Lucene search
K

21 matches found

NVD
NVD
added 2026/06/10 10:17 p.m.11 views

CVE-2026-46669

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS0.00226EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/10 8:9 p.m.29 views

CVE-2026-46669 `openvm-pairing` pairing check missing proper subfield check on scaling factor

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS0.00226EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/10 8:9 p.m.8 views

CVE-2026-46669 `openvm-pairing` pairing check missing proper subfield check on scaling factor

OpenVM is a performant and modular zkVM framework built for customization and extensibility. Prior to version 1.6.0, the openvm-pairing guest library's tryhonestpairingcheck function invokes Theorem 3 of https://eprint.iacr.org/2024/640.pdf but does not check that the scaling factor s is in a...

8.7CVSS5.4AI score0.00226EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 8:9 p.m.15 views

CVE-2026-46669

OpenVM-pairing vulnerability CVE-2026-46669: the openvm-pairing guest library’s try_honest_pairing_check previously did not verify that the scaling factor s lies in a proper subfield of Fp12, allowing incorrect pairing results. The issue has been patched in version 1.6.0; users should upgrade to ...

8.7CVSS5.4AI score0.00226EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.15 views

OpenVM 输入验证错误漏洞

OpenVM is an open-source, high-performance, and modularized zkVM framework designed for customization and scalability. Prior to OpenVM 1.6.0, there was a vulnerability related to input validation errors. This vulnerability stemmed from the tryhonestpairingcheck function in the openvm-pairing...

8.7CVSS5.3AI score0.00226EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/06/04 5:18 p.m.33 views

Flooding Server with Thumbnail files

Details 1. All Imagick supported Fileformats are served without filtering The Thumbnail endpoint does not check against any filters what file formats should be served. We can transcode the image in all formats imagemagick supports. With that we can create Files that are much larger in filesize th...

7.5CVSS6.5AI score0.00763EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/04 2:43 p.m.32 views

CVE-2024-32871 Pimcore Vulnerable to Flooding Server with Thumbnail files

Pimcore is an Open Source Data & Experience Management Platform. The Pimcore thumbnail generation can be used to flood the server with large files. By changing the file extension or scaling factor of the requested thumbnail, attackers can create files that are much larger in file size than the...

7.5CVSS6.6AI score0.00763EPSS
Exploits1References3
Code423n4
Code423n4
added 2023/11/17 12:0 a.m.17 views

D.O.S due to wrong scaling factor

Lines of code Vulnerability details Impact The cNote token which is a fork of the CToken contract has a scaling method used to handle the exchange rate between CToken and the underlying token. This method helps scale the exchange rate because solidity doesn't handle fixed-point decimals. The...

7AI score
Exploits0
Code423n4
Code423n4
added 2023/11/17 12:0 a.m.15 views

asD creator's would not be able to claim interest accrued due to wrong calculations of the maximumWithdrawable

Lines of code Vulnerability details Impact Detailed description of the impact of this finding. The asD contract implement's withdrawCarry method, which calculates the accrued interest on the users NOTE deposit. The variable maximumWithdrawable gets interest accrued by the deposit by the...

7.1AI score
Exploits0
Code423n4
Code423n4
added 2023/10/25 12:0 a.m.12 views

Scaling Issue in AccountingEngine.auctionSurplus Causing Token Drains

Lines of code Vulnerability details Impact The impact of this vulnerability is significant as it leads to a scaling problem in surplus auctions conducted by the AccountingEngine. The vulnerability arises from the way the amountToSell in surplusAuctionHouse.startAuction call and rad in...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2023/08/07 12:0 a.m.9 views

Calculation Errors in calculateAndSendFee Function of OptionsPositionManager Contract

Lines of code Vulnerability details Bug Description In the OptionsPositionManager contract, specifically in the calculateAndSendFee function lines 365 to 367, there are several mathematical errors that impact the accuracy of the feeAmount result. These errors can lead to incorrect fee calculation...

6.7AI score
Exploits0
Code423n4
Code423n4
added 2021/12/22 12:0 a.m.10 views

Reserve does not properly apply prices of VADER and USDV tokens

Handle TomFrenchBlockchain Vulnerability details Impact Reserve pays out vastly higher or lower IL protection than it should Proof of Concept Consider the lines 98 and 102 as shown on the link below: Here we multiply the IL experienced by the LP by a price for USDV or VADER as returned by the LBT...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2014/11/11 9:16 p.m.4 views

libvncserver: server divide-by-zero flaw in scaling factor handling

A divide-by-zero flaw was found in the way LibVNCServer handled the scaling factor when it was set to "0". A remote attacker could use this flaw to crash the VNC server using a malicious VNC client...

4.3CVSS7.3AI score0.0554EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/11/11 6:25 p.m.4 views

libvncserver: server divide-by-zero flaw in scaling factor handling

A divide-by-zero flaw was found in the way LibVNCServer handled the scaling factor when it was set to "0". A remote attacker could use this flaw to crash the VNC server using a malicious VNC client...

4.3CVSS7.3AI score0.0554EPSS
Exploits0References4
NVD
NVD
added 2014/10/06 2:55 p.m.20 views

CVE-2014-6054

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service divide-by-zero error and server crash via a zero value in the scaling factor in a 1 PalmVNCSetScaleFactor or 2 SetScale message...

4.3CVSS6.4AI score0.0554EPSS
Exploits0References13
Cvelist
Cvelist
added 2014/10/06 2:0 p.m.28 views

CVE-2014-6054

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service divide-by-zero error and server crash via a zero value in the scaling factor in a 1 PalmVNCSetScaleFactor or 2 SetScale message...

8.1AI score0.0554EPSS
Exploits0References13
Debian CVE
Debian CVE
added 2014/10/06 2:0 p.m.23 views

CVE-2014-6054

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service divide-by-zero error and server crash via a zero value in the scaling factor in a 1 PalmVNCSetScaleFactor or 2 SetScale message...

4.3CVSS9.2AI score0.0554EPSS
Exploits0
Ubuntu
Ubuntu
added 2014/09/29 5:12 p.m.60 views

USN-2365-1: LibVNCServer vulnerabilities

Nicolas Ruff discovered that LibVNCServer incorrectly handled memory when being advertised large screen sizes by the server. If a user were tricked into connecting to a malicious server, an attacker could use this issue to cause a denial of service, or possibly execute arbitrary code...

7.5CVSS8.6AI score0.08272EPSS
Exploits1
OSV
OSV
added 2014/09/29 5:12 p.m.6 views

USN-2365-1 libvncserver vulnerabilities

Nicolas Ruff discovered that LibVNCServer incorrectly handled memory when being advertised large screen sizes by the server. If a user were tricked into connecting to a malicious server, an attacker could use this issue to cause a denial of service, or possibly execute arbitrary code...

7.5CVSS7.5AI score0.08272EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2014/09/24 12:0 a.m.32 views

CVE-2014-6054

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service divide-by-zero error and server crash via a zero value in the scaling factor in a 1 PalmVNCSetScaleFactor or 2 SetScale message...

4.3CVSS7.2AI score0.0554EPSS
Exploits0References6
Rows per page
Query Builder