Lucene search
K

7 matches found

Debian CVE
Debian CVE
added 2026/01/20 8:41 p.m.4 views

CVE-2025-59464

A memory leak in Node.js’s OpenSSL integration occurs when converting X.509 certificate fields to UTF-8 without freeing the allocated buffer. When applications call socket.getPeerCertificatetrue, each certificate field leaks memory, allowing remote clients to trigger steady memory growth through...

7.5CVSS6.7AI score0.0023EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4860

Malware in sbrugna...

5CVSS8.9AI score0.01272EPSS
Exploits1References33
Cvelist
Cvelist
added 2024/11/12 4:44 p.m.58 views

CVE-2024-49369 Icinga 2 has a TLS Certificate Validation Bypass for JSON-RPC and HTTP API Connections

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. The TLS certificate validation in all Icinga 2 versions starting from 2.4.0 was flawed, allowing an attacker to impersonate both trusted clust...

9.8CVSS0.02934EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2020/10/08 10:11 p.m.66 views

Sensitive data exposure in NATS

Preview versions of two NPM packages and one Deno package from the NATS project contain an information disclosure flaw, leaking options to the NATS server; for one package, this includes TLS private credentials. The connection configuration options in these JavaScript-based implementations were...

7.5CVSS7.2AI score0.01476EPSS
Exploits0References5Affected Software2
0day.today
0day.today
added 2017/11/11 12:0 a.m.92 views

Datto Windows Agent Remote Code Execution Vulnerability

Datto Windows Agent suffers from multiple remote code execution vulnerabilities. Credits ======= Brian Vincent, Michael Brumlow Software ======== Datto Windows Agent Vulnerability Details ===================== Discovered: Aug 25, 2017 Type: Remote code execution as LocalSystem Severity: Critical...

4.9CVSS7.2AI score0.00728EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2007/09/13 6:17 p.m.27 views

CVE-2007-4879

Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey before 1.1.9, can automatically install TLS client certificates with minimal user interaction, and automatically sends these certificates when requested, which makes it easier for remote web sites to track user activities across domains by...

5CVSS7.3AI score0.01272EPSS
Exploits1References3
Prion
Prion
added 2007/09/13 6:17 p.m.18 views

Code injection

Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey before 1.1.9, can automatically install TLS client certificates with minimal user interaction, and automatically sends these certificates when requested, which makes it easier for remote web sites to track user activities across domains by...

5CVSS6.3AI score0.01272EPSS
Exploits1References28Affected Software2
Rows per page
Query Builder