Lucene search
K

7 matches found

OSV
OSV
added 2025/12/01 8:38 p.m.5 views

BIT-FLUENT-BIT-2025-12978 CVE-2025-12978

Fluent Bit inhttp, insplunk, and inelasticsearch input plugins contain a flaw in the tagkey validation logic that fails to enforce exact key-length matching. This allows crafted inputs where a tag prefix is incorrectly treated as a full match. A remote attacker with authenticated or exposed acces...

5.4CVSS7.1AI score0.00341EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2023-33531

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00585EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:10 a.m.22 views

BIT-GITLAB-2023-2001

An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially lead a victim to download malicious code...

4.3CVSS4.3AI score0.00585EPSS
Exploits0References4
OSV
OSV
added 2023/06/07 12:0 a.m.15 views

CVE-2023-2001

An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially lead a victim to download malicious code...

4.3CVSS6.6AI score0.00585EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/06/07 12:0 a.m.21 views

CVE-2023-2001

An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially lead a victim to download malicious code...

4.3CVSS5.8AI score0.00585EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/06/07 12:0 a.m.16 views

CVE-2023-2001

Removed by vendor...

4.3CVSS5.8AI score0.00585EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2005/07/10 12:0 a.m.5 views

PT-2005-3111 · Grandstream · Grandstream Budgetone (Bt) 100

Name of the Vulnerable Software and Affected Versions: Grandstream BudgeTone BT 100 affected versions not specified Description: The issue concerns the Grandstream BudgeTone BT 100 Voice over IP VoIP phones, which do not properly validate certain values in a NOTIFY message. This allows remote...

7.5CVSS6.4AI score0.01189EPSS
Exploits0References6
Rows per page
Query Builder