Lucene search
K

6 matches found

Mageia
Mageia
added 2025/12/13 4:45 a.m.7 views

Updated golang packages fix security vulnerabilities

Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509. CVE-2025-61727 Excessive resource consumption when printing error string for host certificate validation in crypto/x509. CVE-2025-61729...

7.5CVSS7AI score0.00459EPSS
Exploits2References2
Microsoft CVE
Microsoft CVE
added 2025/12/05 1:1 a.m.6 views

Excessive resource consumption when printing error string for host certificate validation in crypto/x509

...

7.5CVSS7AI score0.00459EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2025/08/06 12:46 a.m.5 views

kernel: wifi: iwlwifi: limit printed string from FW file

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from FW file There's no guarantee here that the file is always with a NUL-termination, so reading the string may read beyond the end of the TLV. If that's the last TLV in the file, it can perha...

7.1CVSS6.8AI score0.00206EPSS
Exploits0References5
OSV
OSV
added 2025/04/01 4:15 p.m.7 views

UBUNTU-CVE-2025-21905

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from FW file There's no guarantee here that the file is always with a NUL-termination, so reading the string may read beyond the end of the TLV. If that's the last TLV in the file, it can perha...

7.1CVSS6.4AI score0.00206EPSS
Exploits0References59
OSV
OSV
added 2016/03/01 2:38 p.m.5 views

USN-2914-1 openssl vulnerabilities

Yuval Yarom, Daniel Genkin, and Nadia Heninger discovered that OpenSSL was vulnerable to a side-channel attack on modular exponentiation. On certain CPUs, a local attacker could possibly use this issue to recover RSA keys. This flaw is known as CacheBleed. CVE-2016-0702 Adam Langley discovered th...

10CVSS7AI score0.32414EPSS
Exploits1References6
Hacker One
Hacker One
added 2015/01/18 10:18 a.m.37 views

Vimeo: Application XSS filter function Bypass may allow Multiple stored XSS

Hi, As i analysed the application behavior and the security structure, i found out that the application is using "Greedy XSS Regex filter" against XSS and removes any the whole string from ''. So i tried some basic bypass which allowed me to insert tags and other characters into the string. Here ...

5.8AI score
Exploits0
Rows per page
Query Builder