Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-50814

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00473EPSS
Exploits1References3
CVE
CVE
added 2025/02/12 3:2 p.m.275 views

CVE-2024-12379

CVE-2024-12379 is a denial-of-service issue in GitLab CE/EE where an attacker can cause unbounded symbol creation via the scopes parameter in a Personal Access Token, impacting availability. Affected versions run from 14.1 up to 17.6.5, 17.7 up to 17.7.4, and 17.8 up to 17.8.2. The root cause is ...

6.5CVSS6.2AI score0.00473EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/12 3:2 p.m.5 views

CVE-2024-12379 Allocation of Resources Without Limits or Throttling in GitLab

A denial of service vulnerability in GitLab CE/EE affecting all versions from 14.1 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2 allows an attacker to impact the availability of GitLab via unbounded symbol creation via the scopes parameter in a Personal Access Token...

6.5CVSS6.2AI score0.00473EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2025/02/12 3:2 p.m.4 views

CVE-2024-12379

Removed by vendor...

6.5CVSS5.8AI score0.00473EPSS
Exploits1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

GitLab 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD continuous integration and continuous delivery, and other features. A security vulnerability exists in GitLab that stems from unrestricted symbol...

6.5CVSS6.6AI score0.00473EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2014/11/17 5:8 p.m.14 views

rubygem-activerecord: attribute_dos Symbol DoS vulnerability

A flaw was found in the way Ruby on Rails handled hashes in certain queries. A remote attacker could use this flaw to perform a denial of service resource consumption attack by sending specially crafted queries that would result in the creation of Ruby symbols, which were never garbage collected...

5CVSS7.1AI score0.03438EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/09/10 1:9 p.m.2 views

Foreman: hosts_controller.rb power/ipmi_boot Symbol creation DoS

The 1 power and 2 ipmiboot actions in the HostController in Foreman before 1.2.2 allow remote attackers to cause a denial of service memory consumption via unspecified input that is converted to a symbol...

5CVSS5.9AI score0.02413EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/09/03 8:12 p.m.3 views

Foreman: hosts_controller.rb power/ipmi_boot Symbol creation DoS

The 1 power and 2 ipmiboot actions in the HostController in Foreman before 1.2.2 allow remote attackers to cause a denial of service memory consumption via unspecified input that is converted to a symbol...

5CVSS5.9AI score0.02413EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/03/26 7:10 p.m.6 views

rubygem-json: Denial of Service and SQL Injection

The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain...

7.5CVSS6.7AI score0.13911EPSS
Exploits0References5
OSV
OSV
added 2013/02/13 1:55 a.m.2 views

DEBIAN-CVE-2013-0269

The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain...

7.5CVSS7.9AI score0.13911EPSS
Exploits0References1
Rows per page
Query Builder