14 matches found
CVE-2023-43512
Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer...
EUVD-2018-13363
Malware in sbrugna...
EUVD-2022-6753
Malicious code in bioql PyPI...
USN-7648-2: PHP vulnerabilities
USN-7648-1 fixed several vulnerabilities in PHP. This update provides the corresponding updates for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that PHP incorrectly handled certain hostnames containing null characters. A remote attacker...
Medium: ecs-init
Issue Overview: An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service. CVE-2024-45338 Affected Packages: ecs-init Issue Correction: Run dnf update ecs-init...
PT-2024-10470
Name of the Vulnerable Software and Affected Versions Golang versions prior to the fixed version Description The issue is related to uncontrolled resource consumption in the Golang programming language. An attacker can craft an input to the Parse functions that would be processed non-linearly wit...
Wireshark BLF File Parsing Flaw Vulnerability
Wireshark is an open source network protocol analysis tool that is widely used in real-time network communications, network troubleshooting, network security analysis and other fields. It can capture and analyze packets transmitted from the network , provides a powerful system of filters and...
OPENSUSE-SU-2021:0941-1 Security update for tor
This update for tor fixes the following issues: tor 0.4.5.9 Don't allow relays to spoof RELAYEND or RELAYRESOLVED cell CVE-2021-34548, boo1187322 Detect more failure conditions from the OpenSSL RNG code boo1187323 Resist a hashtable-based CPU denial-of-service attack against relays CVE-2021-34549...
CVE-2020-15608
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxdashboard.php. When parsing the aiservice parameter, the process...
Nessus Map - Parse .Nessus File(S) And Shows Output In Interactive UI
Nessus XML Praser Requirements Python3 Django Tested on Ubuntu 18.04 What it does Vulnerability based parsing Service based parsing Host bases parsing Unsupported OS parsing Generate Executive Summary of scan Export parsed .nessuss to JSON files Import JSON file in NessusMap How it works Create X...
CVE-2019-1010183
serde serdeyaml 0.6.0 to 0.8.3 is affected by: Uncontrolled Recursion. The impact is: Denial of service by aborting. The component is: from functions all deserialization functions. The attack vector is: Parsing a malicious YAML file. The fixed version is: 0.8.4 and later...
CVE-2019-1010182
yaml-rust 0.4.0 and earlier is affected by: Uncontrolled Recursion. The impact is: Denial of service by impossible to catch abort. The component is: YamlLoader::loadfromstr function. The attack vector is: Parsing of a malicious YAML document. The fixed version is: 0.4.1 and later...
PYSEC-2019-218
libnmap v0.6.3 is affected by: XML Injection. The impact is: Denial of service DoS by consuming resources. The component is: XML Parsing. The attack vector is: Specially crafted XML payload...
Design/Logic Flaw
libnmap v0.6.3 is affected by: XML Injection. The impact is: Denial of service DoS by consuming resources. The component is: XML Parsing. The attack vector is: Specially crafted XML payload...