Lucene search
K

5 matches found

Snyk
Snyk
added 2026/04/28 12:0 a.m.6 views

Improper Isolation or Compartmentalization

Overview Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization due to improper isolation of the SecurityContext. When an authenticated user experiences an authorization failure, their security context is not properly cleared from the underlying gRPC worker...

8.8CVSS5.8AI score0.00171EPSS
Exploits0References2
Spring Security Advisories
Spring Security Advisories
added 2026/04/28 12:0 a.m.8 views

Spring gRPC SecurityContext leaks across requests on authorization failure

When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent unauthenticated request on the same thread. This may allow the subsequent user to gain escalated permissions...

4.2CVSS5.9AI score0.00171EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/04/24 3:16 p.m.7 views

CVE-2026-31628

In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attacker thread. Fix that with a chicken bit...

5.5CVSS0.00125EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2021/10/04 12:0 a.m.30 views

Jetty 9.4.27 < 9.4.30 Buffer Overflow

The version of Jetty installed on the remote host when handling too large response headers throws an exception to produce an HTTP 431 error. When this happens, the ByteBuffer containing the HTTP response headers is released back to the ByteBufferPool twice. Because of this double release, two...

9.4CVSS9.6AI score0.11138EPSS
Exploits0References2
Amazon
Amazon
added 2019/05/07 12:0 a.m.155 views

Important: kernel

Issue Overview: - Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12126 - Microarchitectural Fill Buffer Data Sampling MFBDS CVE-2018-12130 - Microarchitectural Load Port Data Sampling MLPDS CVE-2018-12127 - Microarchitectural Data Sampling Uncacheable Memory MDSUM CVE-2019-11091...

5.6CVSS6.9AI score0.01553EPSS
Exploits0
Rows per page
Query Builder