Lucene search
+L

4 matches found

attackerkb
attackerkb
added 2026/06/01 8:45 p.m.10 views

CVE-2026-10291

A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function validateRegex of the file claw-orchestrator/src/embedded-server.ts of the component Session Grep Endpoint. The manipulation of the argument body.pattern leads to inefficient...

5.3CVSS5.4AI score0.00354EPSS
Exploits0References10Affected Software1
elastic
elastic
added 2024/06/05 8:57 p.m.9 views

Elastic Cloud Enterprise 3.7.1 Security Update (ESA-2024-08)

Elastic Cloud Enterprise - Uncontrolled Resource Consumption through HTTP/2 endpoints - CVE-2023-45288 ESA-2024-08 On April 4, 2024, the Go Project announced CVE-2023-45288, which can lead to CPU exhaustion as an attacker can cause an HTTP/2 endpoint to read arbitrary amounts of header data. In t...

7.5CVSS9.1AI score0.91969EPSS
Exploits1
osv
osv
added 2021/02/26 3:15 a.m.15 views

PYSEC-2021-76

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In aiohttp before version 3.7.4 there is an open redirect vulnerability. A maliciously crafted link to an aiohttp-based web-server could redirect the browser to a different website. It is caused by a bug in the...

6.1CVSS6.7AI score0.01905EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2012/08/16 12:0 a.m.11 views

PT-2012-4446 · Tridium · Tridium Niagara Ax Framework

Name of the Vulnerable Software and Affected Versions: Tridium Niagara AX Framework versions prior to 3.7 Description: The issue concerns the default configuration of the software, which uses a cleartext base64 format for transmitting credentials in cookies. This allows remote attackers to obtain...

5CVSS6AI score0.01925EPSS
Exploits0References3
Rows per page
Query Builder