4 matches found
HTTP Request Smuggling io.netty:netty-codec-http Dependency in Crowd Data Center
This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity HTTP Request Smuggling vulnerability was introduced in versions 6.2.0, 6.3.0, 7.0.0, 7.1.0, 7.2.0 of Crowd Data Center. This HTTP...
PT-2025-13167
Name of the Vulnerable Software and Affected Versions Synology Mail Server versions prior to DSM 7.2/7.1 Description A vulnerability in Synology Mail Server allows authenticated users to tamper with system configurations, risking mail stability. The issue can be exploited by remote attackers,...
PT-2024-34872
Name of the Vulnerable Software and Affected Versions Zope AccessControl versions prior to 7.2 Description The issue allows anonymous users to delete the user data maintained by an AccessControl.userfolder.UserFolder, which may prevent any privileged access. Recommendations For versions prior to...
PT-2024-13136 · Couchbase · Couchbase Server
Name of the Vulnerable Software and Affected Versions: Couchbase Server versions 6.6.x through 7.2.0 Description: An issue was discovered in Couchbase Server where unauthenticated users may cause memcached to run out of memory via large commands. Recommendations: For Couchbase Server versions 6.6...