CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в protobuf

A issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in a way that would cause them to be processed out of order. A small malicious payload can occupy the parser for several minutes by creating a large number of short-lived objects, resulting in frequent...

7.5CVSS6.7AI score0.00471EPSS

Exploits1References2

Github Security Blog•added 2024/01/16 9:13 p.m.•39 views

CL-Signatures Revocation Scheme in Ursa has flaws that allow a holder to demonstrate non-revocation of a revoked credential

Summary The revocation schema that is part of the Ursa CL-Signatures implementations has a flaw that could impact the privacy guarantees defined by the AnonCreds verifiable credential model, allowing a malicious holder of a revoked credential to generate a valid Non-Revocation Proof for that...

8.1CVSS6.3AI score0.0012EPSS

Exploits0References3Affected Software2

OSV•added 2022/01/10 2:10 p.m.•1 views

AZL-41431 CVE-2021-22569 affecting package pytorch for versions less than 2.2.2-5

An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...

5.5CVSS6.7AI score0.00471EPSS

Exploits1References1