Lucene search
K

135 matches found

CVE
CVE
added 2026/06/24 8:13 p.m.16 views

CVE-2026-52796

CVE-2026-52796 / GHSA-4J89-2C4F-44C6 : Gogs before 0.14.3 is vulnerable to a DoS caused by a rendering panic in the issue index pattern. The bug arises when rendering the index link in internal/markup/markup.go: com.Expand is fed a pattern containing an opening brace “{” but no matching “}”, lead...

3.5CVSS5.9AI score0.00284EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in libxpm

A flaw was discovered in libXpm. This issue occurs when parsing a file with a comment that is not closed properly; the “end-of-file” condition will not be detected, leading to an infinite loop and causing a Denial of Service in the application that uses the library...

7.5CVSS6.6AI score0.01273EPSS
Exploits2References2
Oracle linux
Oracle linux
added 2026/04/29 12:0 a.m.12 views

sudo security update

1.9.5p2-1.0.1.el810.5 - Fixes sudo -s unclosed sessions when usepty option used Orabug: 36952911 1.9.5p2-1.5 RHEL 8.10.0.Z ERRATUM - CVE-2026-35535 - Privilege escalation due to failure in privilege drop calls Resolves: RHEL-166060 1.9.5p2-1.3 RHEL 8.10.0.Z ERRATUM - sudo passes SHELL environment...

7.4CVSS5.2AI score0.03239EPSS
Exploits76
OSV
OSV
added 2026/04/28 1:7 p.m.7 views

JLSEC-2026-284

A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library...

7.5CVSS6.5AI score0.01273EPSS
Exploits2References14
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unclosed quota that could lead to a memory leak...

6.1AI score0.00168EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.7 views

Jenkins 安全漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project. A security vulnerability exists in Jenkins 2.540 and earlier and LTS 2.528.2 and earlier, which stems from not properly...

7.5CVSS7.4AI score0.00515EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-7138

Malware in sbrugna...

5.3CVSS7.3AI score0.07879EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0489

Malware in sbrugna...

7.5CVSS7.6AI score0.03012EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-2668

Malware in sbrugna...

4.3CVSS6.1AI score0.01868EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-15797

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.00683EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unclosed file handle that could lead to a resource leak...

5.5CVSS4.9AI score0.00135EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2017-18361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause an infinite loop thereby causing a denial of service via an unclosed...

7.5CVSS7.2AI score0.01762EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-46285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of- file condition will not be detected, leading to an...

7.5CVSS6.6AI score0.01273EPSS
Exploits2References2
Redos
Redos
added 2025/07/24 12:0 a.m.9 views

ROS-20250724-06

A vulnerability in the Ruby websocket-extensions module that supports the implementation of WebSocket extensions is related to spending quadratic time parsing a header containing an unclosed string parameter value, which is a repeating two-byte sequence of backslash and some of backslash and some...

7.5CVSS7.4AI score0.04404EPSS
Exploits1
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unclosed file pointer that could lead to a resource leak...

7.1CVSS5.7AI score0.00195EPSS
Exploits0References3
CVE
CVE
added 2025/05/19 7:18 p.m.211 views

CVE-2025-47935

CVE-2025-47935 (Multer) : Multer (Node.js multipart/form-data middleware) versions before 2.0.0 are affected by a resource exhaustion/memory‑leak due to improper stream handling. When the HTTP request stream errors, the internal busboy stream is not closed, causing streams to accumulate and consu...

7.5CVSS7.7AI score0.00683EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/06 12:0 a.m.7 views

Eclipse ThreadX NetX Duo 安全漏洞

Eclipse ThreadX NetX Duo is an IPv4 and IPv6 dual network stack for Eclipse ThreadX open source. A security vulnerability exists in Eclipse ThreadX NetX Duo versions prior to 6.4.3, which stems from an unclosed file and could lead to a denial of service...

7.5CVSS8.1AI score0.00884EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/02/03 8:54 p.m.2 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS7.3AI score0.91969EPSS
Exploits1References4
OSV
OSV
added 2025/02/03 8:54 p.m.6 views

SUSE-SU-2025:0346-1 Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518...

7.5CVSS8AI score0.91969EPSS
Exploits1References3
OSV
OSV
added 2025/02/03 5:3 p.m.10 views

SUSE-SU-2025:0342-1 Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518...

7.5CVSS8AI score0.91969EPSS
Exploits1References3
Rows per page
Query Builder