Lucene search
K

5 matches found

Snyk
Snyk
added 2026/01/13 9:54 p.m.1 views

Improper Handling of Highly Compressed Data (Data Amplification)

Overview guarddog is a GuardDog is a CLI tool to Identify malicious PyPI packages Affected versions of this package are vulnerable to Improper Handling of Highly Compressed Data Data Amplification via the safeextract function. An attacker can exhaust disk space and disrupt services by submitting ...

7.5CVSS6.8AI score0.00431EPSS
Exploits1References2
PyPA
PyPA
added 2023/09/12 12:15 p.m.5 views

PYSEC-2023-171

Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authenticatedusers who have access to see the task/dag in the UI, to craft a URL, which could lead to unmasking the secret configuration of the task that otherwise would be masked in the UI.Users are strongly advise...

6.5CVSS6.8AI score0.01476EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:23 a.m.6 views

SUSE CVE-2022-41853

Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...

8CVSS8.3AI score0.03519EPSS
Exploits1References5
OSV
OSV
added 2022/10/06 6:17 p.m.4 views

UBUNTU-CVE-2022-41853

Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...

9.8CVSS7.3AI score0.03519EPSS
Exploits1References4
OSV
OSV
added 2020/09/14 10:22 p.m.6 views

OPENSUSE-SU-2020:1433-1 Security update for docker-distribution

This update for docker-distribution fixes the following issues: - Enable build on %arm which include armv6, not only on armv7 - Enable ppc64le - Use correct URL to project - Remove fillup, we don't ship a sysconfig file - Correct systemd requires - Enable build on ARM - Upgraded to 2.7.1 - Suppor...

7.5CVSS7.5AI score0.03192EPSS
Exploits0References4
Rows per page
Query Builder