Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

3 matches found

CVE
CVEβ€’added 5 days agoβ€’18 views

CVE-2026-49762

The CVE affects Elixir’s standard library Version module (Version.parse/1, parse!/1, parse_requirement/1, match?/3, compare/2). A numeric component in version strings is converted to integers without bounds, enabling an attacker to cause CPU and memory exhaustion (DoS) by supplying a large all-di...

5.1CVSS5.5AI score0.00033EPSS
Exploits0References4
OSV
OSVβ€’added 5 days agoβ€’4 views

EEF-CVE-2026-49762 Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service

Summary Uncontrolled Resource Consumption vulnerability in the Elixir standard library's Version module allows an attacker who controls a version string to cause a denial of service through CPU and memory exhaustion. The version parser converts numeric version components major, minor, patch and...

5.1CVSS5.5AI score0.00033EPSS
Exploits0References3
FreeBSD
FreeBSDβ€’added 5 days agoβ€’4 views

Elixir -- Denial of service via unbounded integer parsing in Version

PJUllrich reports: The Version module parses numeric version components without length limits. Untrusted input can trigger creation of arbitrary-precision integers, causing CPU and memory exhaustion...

5.1CVSS5.4AI score0.00033EPSS
Exploits0References1
Rows per page
Query Builder