Lucene search
K

4 matches found

Snyk
Snyk
added 2026/06/12 6:30 p.m.7 views

Buffer Over-read

Overview tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed. Affected versions of this package are vulnerable to Buffer Over-read via the websocketmask function in the speedups component. An attacker can trigger a read past the end of the mas...

6.3CVSS5.4AI score0.00027EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/12 6:52 a.m.4 views

Excessive Iteration

Overview tornado is a Python web framework and asynchronous networking library, originally developed at FriendFeed. Affected versions of this package are vulnerable to Excessive Iteration in the parseparam function. An attacker can cause the server to become unresponsive and consume excessive CPU...

8.7CVSS6.8AI score0.00378EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/01 12:0 a.m.5 views

PT-2024-32200

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5 Description The vulnerability is related to the userfaultfd feature in the Linux kernel, specifically with the pmd trans huge code in mfill atomic. The issue arises from a racy check that can lead to a BUG ON...

4.7CVSS5.5AI score0.00198EPSS
Exploits0
OSV
OSV
added 2024/02/23 11:6 a.m.4 views

OESA-2024-1162 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more...

7.5CVSS7AI score0.88864EPSS
Exploits0References2
Rows per page
Query Builder