Lucene search
+L

4 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2343

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00822EPSS
Exploits1References6
vulnersOsv
vulnersOsv
added 2024/07/10 6:33 a.m.5 views

@persistr/cli (>=2.7.1 <=2.9.1), spidersharkcli (>=0.0.4 <=0.0.8) potentially affected by CVE-2024-21524 via node-stringbuilder (=2.2.7)

node-stringbuilder NPM version =2.2.7 is affected by a known vulnerability. The following packages have a transitive dependency on node-stringbuilder and may be impacted: - @persistr/cli =2.7.1, =0.0.4, =0.0.8 Source cves: CVE-2024-21524 Source advisory: OSV:GHSA-G533-XQ5W-JMF3...

9.1CVSS5.8AI score0.00822EPSS
Exploits1
OSV
OSV
added 2024/07/10 6:33 a.m.1 views

GHSA-G533-XQ5W-JMF3 node-stringbuilder vulnerable to Out-of-bounds Read

All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input. It's possible to return previously allocated memory, for example,...

8.8CVSS5.9AI score0.00822EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/01/27 2:14 p.m.7 views

OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS7.4AI score0.08346EPSS
Exploits0References4
Rows per page
Query Builder