Lucene search
+L

17 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-43253

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00779EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 1:20 a.m.15 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

8.8CVSS7AI score0.00779EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 1:12 a.m.9 views

CVE-2022-1642

A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift standard...

7.5CVSS7AI score0.00608EPSS
Exploits0References1
osv
osv
added 2023/06/07 4:7 p.m.20 views

GHSA-239C-6CV2-WWX8 Swift-corelibs-foundation denial of service in JSON decoding with JSONDecoder

Impact A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift...

7.5CVSS7.5AI score0.00608EPSS
Exploits0References4
github
github
added 2023/06/07 4:7 p.m.30 views

Swift-corelibs-foundation denial of service in JSON decoding with JSONDecoder

Impact A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift...

7.5CVSS6.8AI score0.00608EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2023/01/20 8:15 p.m.36 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

8.8CVSS8.8AI score0.00779EPSS
Exploits0References1
prion
prion
added 2023/01/20 8:15 p.m.18 views

Crlf injection

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

6.5CVSS8.6AI score0.00779EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2023/01/20 12:0 a.m.5 views

swift-corelibs-foundation 注入漏洞

Apple Swift is a programming language for macOS, iOS, watchOS, and tvOS from Apple USA. A security vulnerability exists in swift-corelibs-foundation versions prior to 5.7.3, which stems from the fact that programs using FoundationNetworking may be vulnerable to a CRLF injection attack in the...

8.8CVSS7.8AI score0.00779EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/01/20 12:0 a.m.5 views

PT-2023-13704 · Apple · Swift-Corelibs-Foundation

Name of the Vulnerable Software and Affected Versions: swift-corelibs-foundation affected versions not specified Description: A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. This allows a client to insert one or...

8.8CVSS6.8AI score0.00779EPSS
Exploits0References5
osv
osv
added 2023/01/20 12:0 a.m.23 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

8.8CVSS8.8AI score0.00779EPSS
Exploits0References3
cvelist
cvelist
added 2023/01/20 12:0 a.m.37 views

CVE-2022-3918

A program using FoundationNetworking in swift-corelibs-foundation is potentially vulnerable to CRLF injection in URLRequest headers. In this vulnerability, a client can insert one or several CRLF sequences into a URLRequest header value. When that request is sent via URLSession to an HTTP server,...

9AI score0.00779EPSS
Exploits0References1
cve
cve
added 2023/01/20 12:0 a.m.73 views

CVE-2022-3918

CVE-2022-3918 involves Swift’s FoundationNetworking (swift-corelibs-foundation). A CRLF injection flaw in URLRequest headers allows a client to insert CRLF sequences into a header value, which may cause the server to parse extra headers or a second request when sent via URLSession. The vulnerabil...

8.8CVSS8.6AI score0.00779EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2022/06/16 5:15 p.m.32 views

CVE-2022-1642

A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift standard...

7.5CVSS0.00608EPSS
Exploits0References1
prion
prion
added 2022/06/16 5:15 p.m.21 views

Design/Logic Flaw

A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift standard...

5CVSS7.6AI score0.00608EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/06/16 4:39 p.m.127 views

CVE-2022-1642

The CVE describes a denial-of-service vulnerability in Swift corelibs-foundation’s JSON decoding: when decoding JSON with a numeric value that includes a fractional part, JSONDecoder could crash due to a type-mismatch between validation and casting. Affected component: swift-corelibs-foundation (...

7.5CVSS7.5AI score0.00608EPSS
Exploits0References1Affected Software1
osv
osv
added 2022/06/16 4:39 p.m.26 views

CVE-2022-1642

A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift standard...

7.5CVSS7AI score0.00608EPSS
Exploits0References3
cnnvd
cnnvd
added 2022/06/16 12:0 a.m.7 views

Apple Swift 代码问题漏洞

Apple Swift is a programming language for macOS, iOS, watchOS, and tvOS from Apple USA. A security vulnerability exists in Swift swift-corelibs-foundation version 5.6.1 and prior versions, which originates from a potentially malicious source that generates JSON documents containing type mismatche...

7.5CVSS7.3AI score0.00608EPSS
Exploits0References2
Rows per page
Query Builder