Lucene search
K

5 matches found

Snyk
Snyk
added 2026/07/04 3:15 p.m.6 views

Protection Mechanism Failure

Overview fickling is an A static analyzer and interpreter for Python pickle data Affected versions of this package are vulnerable to Protection Mechanism Failure due to shared mutable state in the shortencode function. An attacker can execute arbitrary code by providing a malicious pickle payload...

9.8CVSS6.3AI score0.00321EPSS
Exploits1References2
OSV
OSV
added 2024/12/05 11:15 p.m.7 views

AZL-54017 CVE-2024-52798 affecting package nodejs-nodemon 2.0.3-4

path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. The regular expression that is vulnerable to backtracking can be generated in the 0.1.x release of path-to-regexp. Upgra...

8.7CVSS6.7AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 11:15 p.m.6 views

AZL-54020 CVE-2024-52798 affecting package reaper for versions less than 3.1.1-16

path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. The regular expression that is vulnerable to backtracking can be generated in the 0.1.x release of path-to-regexp. Upgra...

8.7CVSS6.7AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 11:15 p.m.3 views

UBUNTU-CVE-2024-52798

path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. The regular expression that is vulnerable to backtracking can be generated in the 0.1.x release of path-to-regexp. Upgra...

8.7CVSS6.7AI score0.00792EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.3 views

PT-2024-35449

Name of the Vulnerable Software and Affected Versions path-to-regexp versions 0.1.x through 0.1.11 Description The issue concerns a performance vulnerability in path-to-regexp, where certain inputs can generate regular expressions vulnerable to backtracking, leading to poor performance. This...

8.7CVSS6.6AI score0.00792EPSS
Exploits0References24
Rows per page
Query Builder