Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/06/12 6:35 p.m.11 views

CVE-2026-12043 Heap double-free in AWS Common Runtime aws-c-http

Improper handling of HPACK dynamic table size updates in the AWS Common Runtime aws-c-http library might allow a remote threat actor operating a server to cause memory corruption on a connecting client application, potentially leading to arbitrary code execution, via a crafted sequence of HTTP/2...

8.8CVSS5.9AI score0.00351EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.17 views

PT-2026-48949

Name of the Vulnerable Software and Affected Versions aws-c-http versions prior to 0.11.0 Description Improper handling of HPACK dynamic table size updates in the AWS Common Runtime aws-c-http library allows a remote threat actor operating a server to cause memory corruption on a connecting clien...

8.8CVSS5.7AI score0.00351EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-2363

Malicious code in bioql PyPI...

8.2CVSS6.4AI score0.00631EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/07/18 12:0 a.m.6 views

PT-2024-26376

Name of the Vulnerable Software and Affected Versions TorchServe versions prior to 0.11.0 Description The issue arises from the two gRPC ports 7070 and 7071 not being bound to localhost by default, causing them to be bound to all interfaces when TorchServe is launched. Customers using PyTorch...

8.8CVSS5.9AI score0.00631EPSS
Exploits0References14
Snyk
Snyk
added 2022/08/22 2:56 p.m.4 views

Denial of Service (DoS)

Overview opcua is an OPC UA server / client API implementation for Rust. Affected versions of this package are vulnerable to Denial of Service DoS via the ExtensionObjects and Variants objects, when it allows unlimited nesting levels, which could result in a stack overflow even if the message siz...

7.5CVSS7.4AI score0.01114EPSS
Exploits0References2
Snyk
Snyk
added 2020/03/27 4:46 p.m.3 views

Insertion of Sensitive Information into Log File

Overview com.gradle.plugin-publish:com.gradle.plugin-publish.gradle.plugin is a plugin that publishes plugins to the Gradle Plugin Portal. Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while...

6.5CVSS6.6AI score0.00481EPSS
Exploits0References2
Rows per page
Query Builder