Lucene search
+L

4 matches found

Snyk
Snyk
added 2026/04/24 4:31 p.m.4 views

Insufficient Verification of Data Authenticity

Overview Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity in the ForwardAuth middleware when trustForwardHeader is set to false and the deployment is behind a trusted upstream proxy. An attacker can gain unauthorized access to protected backend...

10CVSS5.5AI score0.00267EPSS
Exploits1References2
Snyk
Snyk
added 2026/01/01 6:26 a.m.1 views

Incorrect Authorization

Overview actingweb is a The official ActingWeb library Affected versions of this package are vulnerable to Incorrect Authorization due to missing permission filtering in the listall method in the actingweb/handlers/properties.py. An attacker can access and list properties they are not authorized ...

5.3CVSS6.5AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/19 12:45 a.m.3 views

SUSE CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS6.5AI score0.00113EPSS
Exploits0References3
OSV
OSV
added 2025/12/18 1:15 a.m.4 views

UBUNTU-CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS5.5AI score0.00113EPSS
Exploits0References9
Rows per page
Query Builder