Lucene search
+L

101 matches found

UbuntuCve
UbuntuCve
added 2018/06/12 4:29 a.m.24 views

CVE-2018-12228

An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk gets caught in an infinite loop while trying to read the data stream. This renders the system unusabl...

6.8CVSS6.6AI score0.06783EPSS
Exploits1References3
OSV
OSV
added 2018/06/12 4:29 a.m.21 views

CVE-2018-12228

An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk gets caught in an infinite loop while trying to read the data stream. This renders the system unusabl...

6.5CVSS6.5AI score
Exploits0References3
Debian CVE
Debian CVE
added 2018/06/12 4:0 a.m.45 views

CVE-2018-12228

An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk gets caught in an infinite loop while trying to read the data stream. This renders the system unusabl...

6.8CVSS6.3AI score0.06783EPSS
Exploits1
Cvelist
Cvelist
added 2018/06/12 4:0 a.m.27 views

CVE-2018-12228

An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk gets caught in an infinite loop while trying to read the data stream. This renders the system unusabl...

6.2AI score0.06783EPSS
Exploits1References3
NVD
NVD
added 2018/05/31 8:29 p.m.21 views

CVE-2016-10527

The riot-compiler version version 2.3.21 has an issue in a regex Catastrophic Backtracking thats make it unusable under certain conditions...

7.5CVSS7.5AI score0.01598EPSS
Exploits0References2
OSV
OSV
added 2018/05/31 8:29 p.m.13 views

CVE-2016-10527

The riot-compiler version version 2.3.21 has an issue in a regex Catastrophic Backtracking thats make it unusable under certain conditions...

7.5CVSS7.7AI score
Exploits0References2
OSV
OSV
added 2018/05/02 4:29 p.m.5 views

UBUNTU-CVE-2018-10657

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

7.5CVSS7.1AI score0.0151EPSS
Exploits0References6
OSV
OSV
added 2018/05/02 4:29 p.m.5 views

DEBIAN-CVE-2018-10657

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

7.5CVSS6.7AI score0.0151EPSS
Exploits0References1
Prion
Prion
added 2018/03/05 7:29 p.m.14 views

Denial of service

Some Huawei smart phones with software EVA-L09C34B142; EVA-L09C40B196; EVA-L09C432B210; EVA-L09C440B138; EVA-L09C464B150; EVA-L09C530B127; EVA-L09C55B190; EVA-L09C576B150; EVA-L09C635B221; EVA-L09C636B193; EVA-L09C675B130; EVA-L09C688B143; EVA-L09C703B160; EVA-L09C706B145; EVA-L09GBRC555B171;...

4.3CVSS4AI score0.0055EPSS
Exploits0References1Affected Software9
OSV
OSV
added 2018/02/09 11:29 p.m.14 views

CVE-2018-1000053

LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery CSRF vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be us...

8.8CVSS8.9AI score
Exploits0References1
Prion
Prion
added 2018/02/09 11:29 p.m.14 views

Cross site request forgery (csrf)

LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery CSRF vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be us...

6.8CVSS8.7AI score0.00603EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/02/09 11:0 p.m.19 views

CVE-2018-1000053

LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery CSRF vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be us...

8.8AI score0.00603EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/19 12:0 a.m.3 views

Libmenu-cache Denial of Service Vulnerability

Libmenu-cache is a library that can create and utilize caches to shorten the loading time of menu items. A denial of service vulnerability exists in Libmenu-cache version 1.0.2. A local attacker can exploit this vulnerability to cause a denial of service menu is unusable...

3.3CVSS6.5AI score0.0032EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/03/16 12:0 a.m.7 views

The vulnerability of the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of the Setup Wizard component in the Android operating system is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to require user input for Google accounts after a reboot. This could lead to service interruptions and even cause...

2.1CVSS5.9AI score0.00163EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/16 12:0 a.m.7 views

The vulnerability of the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of the Setup Wizard component in the Android operating system is related to access control deficiencies. Exploiting this vulnerability can allow a malicious actor to cause service failures, as well as lead to the device becoming completely unusable and requiring recompiling...

4.3CVSS6.2AI score0.00392EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2016/08/18 12:0 a.m.13 views

Samsung Security Manager ActiveMQ Broker Service DELETE Method Denial of Service Vulnerability

This vulnerability allows remote attackers to delete files of their choosing from systems running vulnerable installations of Samsung Security Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ActiveMQ Broker service that is installed as pa...

8.5CVSS6.8AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/03/03 12:0 a.m.25 views

Cybozu Office 9.9.0 - 10.3.0 Multiple Vulnerabilities

Cybozu Office is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cybozu:office"; ifdescription...

8.8CVSS6.1AI score0.01609EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2013/02/24 9:0 p.m.86 views

CVE-2013-0212

store/swift.py in OpenStack Glance Essex 2012.1, Folsom 2012.2 before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the Swift endpoint's user name and password in cleartext when the endpoint is misconfigured or unusable, allows remote authenticated users to obtain sensitive...

4CVSS5.8AI score0.02965EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/03/27 12:0 a.m.31 views

CVE-2012-1572

OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space...

7.5CVSS7.1AI score0.01199EPSS
Exploits0References1
securityvulns
securityvulns
added 2004/11/09 12:0 a.m.31 views

DOS against Java JNDI/DNS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iKu Advisory Product : Java Runtime Environment Date : November 8th 2004 Affected versions : 1.4.2, 1.5.0, probably more Vulnerability Type : remote denial of service Severity 1-10 : 3 Remote : yes 0. contents 1. problem description 2. symptoms 3. bug...

Exploits0
Rows per page
Query Builder