Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/05/05 12:0 a.m.53 views

CVE-2026-39103

Buffer Overflow vulnerability in GPAC before commit v391dc7f4d234988ea0bc3cc294eb725eddf8f702 allows an attacker to cause a denial of service via the src/scenegraph/svgattributes.c, svgparsestrings, gfsvgparseattribute...

0.00111EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/04 11:37 p.m.8 views

io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values

A flaw was found in Netty. A remote attacker could exploit this vulnerability by sending specially crafted HTTP/1.1 chunked transfer encoding extension values. Due to incorrect parsing of quoted strings, this flaw enables request smuggling attacks, potentially allowing an attacker to bypass...

7.5CVSS7.2AI score0.0064EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/04/14 5:20 p.m.4 views

io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values

A flaw was found in Netty. A remote attacker could exploit this vulnerability by sending specially crafted HTTP/1.1 chunked transfer encoding extension values. Due to incorrect parsing of quoted strings, this flaw enables request smuggling attacks, potentially allowing an attacker to bypass...

7.5CVSS5.8AI score0.0064EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/03/27 11:27 p.m.3 views

CVE-2026-33870

A flaw was found in Netty. A remote attacker could exploit this vulnerability by sending specially crafted HTTP/1.1 chunked transfer encoding extension values. Due to incorrect parsing of quoted strings, this flaw enables request smuggling attacks, potentially allowing an attacker to bypass...

7.5CVSS5.8AI score0.0064EPSS
Exploits1References7
CVE
CVE
added 2026/03/27 7:54 p.m.614 views

CVE-2026-33870

Netty HTTP request smuggling vulnerability (CVE-2026-33870) arises from how Netty versions prior to 4.1.132.Final and 4.2.10.Final parse quoted strings in HTTP/1.1 chunked transfer encoding extension values, enabling request smuggling attacks. The IBM and OSS/Ecosystem advisories in the connected...

7.5CVSS5.8AI score0.0064EPSS
Exploits1References23Affected Software1
OSV
OSV
added 2026/02/23 2:37 p.m.5 views

CLSA-2026-1771857466 Fix CVE(s): CVE-2025-14087

SECURITY UPDATE: Buffer underflow / integer overflow in GVariant text format parser - debian/patches/CVE-2025-14087.patch: fix potential integer overflow parsing strings, bytestrings, and child element counts in gvariant-parser.c - CVE-2025-14087...

9.8CVSS5.9AI score0.00754EPSS
Exploits0References1
0day.today
0day.today
added 2016/03/10 12:0 a.m.70 views

Putty pscp 0.66 - Stack Buffer Overwrite

Exploit for multiple platform in category dos / poc Source: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-2563 Author: Date: Feb 20th, 2016 Name: putty Vendor: sgtatham - http://www.chiark.greenend.org.uk/sgtatham/putty/ Version: 0.59 3 9 years ago = affected = 0.66 Platforms: win/ni...

7.5CVSS9.6AI score0.34216EPSS
Exploits4
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.34 views

libYAML DoS

Assertion on strings parsing...

5CVSS3.3AI score0.13195EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder