228 matches found
EUVD-2013-2449
Malware in sbrugna...
EUVD-2021-2463
Malware in sbrugna...
EUVD-2021-11765
Malware in sbrugna...
CVE-2025-61962
In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status code in a malformed context...
DEBIAN-CVE-2025-61962
In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status code in a malformed context...
Fetchmail 安全漏洞
Fetchmail is a downloadable email application. A security vulnerability exists in Fetchmail versions prior to 6.5.6, which stems from an SMTP client authenticating when receiving a 334 status code in a malformed environment, which could lead to a crash...
CVE-2025-61962
In fetchmail before 6.5.6, the SMTP client can crash during authentication when a 334 status code is received in a malformed context. This issue is documented across multiple sources (CVE record and various security advisories) and has been addressed in newer releases: advisories indicate updates...
CVE-2025-61962
In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status code in a malformed context...
CVE-2025-61962
In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status code in a malformed context...
EUVD-2024-53746
Malicious code in bioql PyPI...
EUVD-2023-3224
Malicious code in bioql PyPI...
EUVD-2025-29112
Malicious code in bioql PyPI...
GHSA-XCH9-H8QW-85C7 Canonical LXD Project Existence Determination Through Error Handling in Image Get Function
Impact The LXD /1.0/images endpoint is implemented as an AllowUntrusted API that requires no authentication, making it accessible to users without accounts. This API allows determining project existence through differences in HTTP status codes when accessed with the project parameter...
CVE-2025-54291 Project existence disclosure in LXD images API
Information disclosure in images API in Canonical LXD before 6.5 and 5.21.4 on all platforms allows unauthenticated remote attackers to determine project existence via differing HTTP status code responses...
[NetScaler-Responder] Responder policy lead to Client "ERR_TOO_MANY_REDIRECTS"
You may want to redirect clients to a backend server's error page if a specific condition is met. The error page is hosted by the same vServer's backend service. You may configure the responder policy like below: add responder action RespErrorPageAct redirect ""/path/to/errorpage.html""...
CVE-2023-46906
juzaweb = 3.4 is vulnerable to Incorrect Access Control, resulting in an application outage after a 500 HTTP status code. The payload in the timezone field was not correctly validated...
CVE-2021-38384
Serverless Offline 8.0.0 returns a 403 HTTP status code for a route that has a trailing / character, which might cause a developer to implement incorrect access control, because the actual behavior within the Amazon AWS environment is a 200 HTTP status code i.e., possibly greater than expected...
CVE-2010-3903
Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service application crash via a 404 HTTP status code...
CVE-2025-45488
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the mailex parameter...
Return of Wrong Status Code
Overview Affected versions of this package are vulnerable to Return of Wrong Status Code from the chacha20poly1305setkey function, when returning a ChaCha20 initialization error from the OpenSSL backend. An attacker can potentially impact confidentiality, integrity, and availability by exploiting...