Lucene search
K

15 matches found

Packet Storm News
Packet Storm News
added 2025/06/17 12:0 a.m.2 views

Proposal for Improving Google A2A Protocol: Safeguarding Sensitive Data in Multi-Agent Systems

A2A, a protocol for AI agent communication, offers a robust foundation for secure AI agent communication. However, it has several critical issues in handling sensitive data, such as payment details, identification documents, and personal information. This paper reviews the existing protocol,...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/07/11 3:22 p.m.25 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7AI score0.0054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/11/17 5:20 p.m.4 views

puma-5.6.4: http request smuggling vulnerabilities

A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity...

9.1CVSS7.1AI score0.0214EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2022/11/15 9:5 p.m.10 views

kyodo-west.co.jp Cross Site Scripting vulnerability OBB-3057644

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/24 12:22 p.m.12 views

m.nb91b7.cyou Cross Site Scripting vulnerability OBB-2861643

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Code423n4
Code423n4
added 2022/07/15 12:0 a.m.13 views

Not safe transferFrom

Lines of code Vulnerability details Impact The Safe library says: @dev Caution! This library won't check that a token has code, responsibility is delegated to the caller. But this check is not made in Swivel contract, so the Safe library it's prone to phantom methods attacks. Supposedly it is a...

6.7AI score
Exploits0
Vulnrichment
Vulnrichment
added 2022/03/17 12:40 p.m.8 views

CVE-2022-24761 HTTP Request Smuggling in waitress

Waitress is a Web Server Gateway Interface server for Python 2 and 3. When using Waitress versions 2.1.0 and prior behind a proxy that does not properly validate the incoming HTTP request matches the RFC7230 standard, Waitress and the frontend proxy may disagree on where one request starts and...

7.5CVSS7.5AI score0.01738EPSS
Exploits0References5
Fedora
Fedora
added 2017/09/30 7:30 a.m.54 views

[SECURITY] Fedora 27 Update: openjpeg2-2.2.0-3.fc27

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

8.8CVSS4.4AI score0.05652EPSS
Exploits0
Fedora
Fedora
added 2016/12/19 11:26 p.m.56 views

[SECURITY] Fedora 25 Update: openjpeg2-2.1.2-3.fc25

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

8.8CVSS4.4AI score0.02037EPSS
Exploits2
Fedora
Fedora
added 2016/09/15 7:9 p.m.40 views

[SECURITY] Fedora 25 Update: openjpeg2-2.1.1-3.fc25

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

7.8CVSS4.4AI score0.07114EPSS
Exploits1
Fedora
Fedora
added 2015/10/13 6:54 a.m.29 views

[SECURITY] Fedora 21 Update: openjpeg2-2.1.0-7.fc21

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

7.5CVSS4.4AI score0.02677EPSS
Exploits0
Fedora
Fedora
added 2014/03/19 8:39 a.m.55 views

[SECURITY] Fedora 20 Update: pylint-1.1.0-1.fc20

Pylint is a python tool that checks if a module satisfy a coding standard. Pylint can be seen as another PyChecker since nearly all tests you can do with PyChecker can also be done with Pylint. But Pylint offers some more features, like checking line-code's length, checking if variable names are...

4.4CVSS1.8AI score0.00355EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/01/21 12:0 a.m.30 views

SuSE 11.1 Security Update : openSLP (SAT Patch Number 3312)

The openslp daemon could run into an endless loop when receiving specially crafted packets CVE-2010-3609. This has been fixed. Additionally the following non-security bugs were fixed : - 564504: Fix handling of DA answers if both active and passive DA detection is off - 597215: Add configuration...

5CVSS7AI score0.17223EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.28 views

SuSE 11 Security Update : openslp (SAT Patch Number 3317)

The openslp daemon could run into an endless loop when receiving specially crafted packets. CVE-2010-3609 Additionally the following non-security bugs were fixed : - 564504: Fix handling of DA answers if both active and passive DA detection is off - 597215: Add configuration options to openSLP:...

5CVSS7.1AI score0.17223EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2010/11/30 12:0 a.m.34 views

SuSE 10 Security Update : openslp (ZYPP Patch Number 7187)

The openslp daemon could run into an endless loop when receiving specially crafted packets CVE-2010-3609. This has been fixed. Additionally the following non-security bugs were fixed : - This openSLP update extends the net.slp.isDABackup mechanism introduced with the previous update by a new...

5CVSS6.9AI score0.17223EPSS
Exploits1References2
Rows per page
Query Builder