Lucene search
K

6 matches found

Snyk
Snyk
added 2026/03/03 6:39 p.m.4 views

Out-of-bounds Read

Overview Biosig is a BioSig - tools for biomedical signal processing Affected versions of this package are vulnerable to Out-of-bounds Read in the ABF parsing. An attacker can access sensitive information by providing a specially crafted .abf file. Remediation Upgrade Biosig to version 3.9.3 or...

7.1CVSS5.8AI score0.00184EPSS
Exploits1References3
Snyk
Snyk
added 2024/12/01 6:31 a.m.4 views

Denial of Service (DoS)

Overview GDAL is a number of tools for programming and manipulating the GDAL Geospatial Data Abstraction Library. Affected versions of this package are vulnerable to Denial of Service DoS via the GMLASReader class due to improper entity expansion restrictions. Exploiting this vulnerability is...

8.7CVSS7.1AI score
Exploits0References3
OSV
OSV
added 2024/11/07 12:30 p.m.1 views

GHSA-G93M-8X6H-G5GV Apache ZooKeeper: Authentication bypass with IP-based authentication in Admin Server

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

8.8CVSS7AI score0.00924EPSS
Exploits0References5
OSV
OSV
added 2024/11/07 10:15 a.m.9 views

UBUNTU-CVE-2024-51504

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

9.1CVSS7.1AI score0.00924EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/11/08 12:0 a.m.8 views

PT-2020-16164 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle versions 3.9 through 3.9.2 Description: The issue allowed including JavaScript when re-naming content bank items. This is fixed in Moodle versions 3.9.3 and 3.10. Recommendations: For versions 3.9 through 3.9.2, update to version 3.9.3...

9.8CVSS6.1AI score0.49102EPSS
Exploits1References65
Positive Technologies
Positive Technologies
added 2020/09/16 12:0 a.m.5 views

PT-2020-15481 · Jenkins · Jenkins Pipeline Maven Integration Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Pipeline Maven Integration Plugin versions 3.9.2 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because the upstream job's display name shown as part of a build cause is not...

5.4CVSS5.1AI score0.00735EPSS
Exploits0References7
Rows per page
Query Builder