Lucene search
K

30 matches found

OSV
OSV
added 2026/06/12 12:25 p.m.7 views

OESA-2026-2618 libsoup security update

libsoup is an HTTP client/server library for GNOME. It uses GObjects and the glib main loop, to integrate well with GNOME applications, and also has a synchronous API, for use in threaded applications. Security Fixes: A flaw was found in libsoup. The SoupWebsocketConnection may accept a large...

7.5CVSS7.3AI score0.00872EPSS
Exploits0References3
OSV
OSV
added 2026/06/12 12:25 p.m.8 views

OESA-2026-2617 libsoup security update

libsoup is an HTTP client/server library for GNOME. It uses GObjects and the glib main loop, to integrate well with GNOME applications, and also has a synchronous API, for use in threaded applications. Security Fixes: A flaw was found in libsoup. The SoupWebsocketConnection may accept a large...

7.5CVSS7.3AI score0.00872EPSS
Exploits0References3
OSV
OSV
added 2026/06/12 12:25 p.m.11 views

OESA-2026-2616 libsoup security update

libsoup is an HTTP client/server library for GNOME. It uses GObjects and the glib main loop, to integrate well with GNOME applications, and also has a synchronous API, for use in threaded applications. Security Fixes: A flaw was found in libsoup. A remote attacker could exploit an unsigned to...

4.8CVSS5.4AI score0.00872EPSS
Exploits0References2
OSV
OSV
added 2026/06/12 12:25 p.m.10 views

OESA-2026-2615 libsoup security update

libsoup is an HTTP client/server library for GNOME. It uses GObjects and the glib main loop, to integrate well with GNOME applications, and also has a synchronous API, for use in threaded applications. Security Fixes: A flaw was found in libsoup. A remote attacker could exploit an unsigned to...

4.8CVSS5.4AI score0.00872EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/02 8:1 a.m.5 views

Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

...

4.8CVSS5.8AI score0.00872EPSS
Exploits0
NVD
NVD
added 2026/05/29 7:16 a.m.14 views

CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS0.00872EPSS
Exploits0References4
OSV
OSV
added 2026/05/29 7:16 a.m.9 views

UBUNTU-CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/29 5:24 a.m.46 views

CVE-2026-6324 Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS0.00872EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/29 5:24 a.m.17 views

CVE-2026-6324 Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References3
CVE
CVE
added 2026/05/29 5:24 a.m.31 views

CVE-2026-6324

Affected software: libsoup. Vulnerability: unsigned-to-signed conversion error in soup_body_input_stream_read_chunked(). Impact: remote attacker can bypass security controls, poison web caches, or gain unauthorized access when libsoup sits behind or fronts a non-libsoup server. Context: exploit v...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/29 5:24 a.m.18 views

EUVD-2026-33249

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/29 5:24 a.m.11 views

CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.11 views

libsoup 安全漏洞

Libsoup is a GNOME project’s HTTP client/server library. Libsoup has a security vulnerability, which stems from an error in the unsigned-to-signed conversion in the soupbodyinputstreamreadchunked function. This vulnerability could allow remote attackers to bypass security controls by sending...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-6324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/21 7:12 a.m.72 views

CVEs

NULL Dereference The vulnerabilities found in cryptofioctl...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.12 views

NetBSD 输入验证错误漏洞

NetBSD is an open-source Unix-like operating system developed by the NetBSD Foundation. Prior to version ec8451, there was a vulnerability related to input validation. This vulnerability stemmed from the fact that the local variable iovlen was declared as a signed integer in the cryptodevop...

5.7CVSS5.9AI score0.00109EPSS
Exploits0References1
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43185

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS0.00622EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.16 views

PT-2026-44752

Name of the Vulnerable Software and Affected Versions libsoup affected versions not specified Description An unsigned to signed conversion error exists in the soup body input stream read chunked function. A remote attacker can exploit this by sending a malicious HTTP request when libsoup is used...

4.8CVSS5.9AI score0.00872EPSS
Exploits0References26
EUVD
EUVD
added 2025/10/07 7:31 p.m.5 views

EUVD-2025-32887

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A BPv7 bundle with a malformed extension block causes uncontrolled memory allocation inside ION-DTN 4.1.3s, leading to receiver thread termination and a Denial-of-Service DoS. The...

7.5CVSS6.5AI score0.00331EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.3 views

Interplanetary Overlay Network 安全漏洞

Interplanetary Overlay Network is an open-source implementation of a delay-tolerant network at NASA Jet Propulsion Laboratory. A security vulnerability exists in Interplanetary Overlay Network version 4.1.3s, which stems from a failure to properly convert unsigned integers to signed integers when...

7.5CVSS6.6AI score0.00331EPSS
Exploits0References3
Rows per page
Query Builder