Lucene search
K

8 matches found

OSV
OSV
added 2025/07/22 5:47 a.m.4 views

BIT-NODE-MIN-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS7AI score0.00771EPSS
Exploits0References3
OSV
OSV
added 2025/07/22 5:47 a.m.5 views

BIT-NODE-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS7AI score0.00771EPSS
Exploits0References3
NVD
NVD
added 2025/07/18 11:15 p.m.10 views

CVE-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS0.00771EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/18 10:54 p.m.9 views

CVE-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS0.00771EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/18 10:54 p.m.5 views

CVE-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS7AI score0.00771EPSS
Exploits0References1
CVE
CVE
added 2025/07/18 10:54 p.m.57 views

CVE-2025-27209

CVE-2025-27209 affects Node.js v24.x where the V8 string-hashing implementation (rapidhash) re-introduces a HashDoS risk: an attacker who controls input strings can induce hash collisions, potentially enabling a DoS-style attack without knowledge of the hash seed. The vulnerability is tied to the...

7.5CVSS6.8AI score0.00771EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/23 1:31 a.m.47 views

Security Bulletin: Power Hardware Management Console is Affected by Vulnerabilities in OpenSSL (CVE-2014-0224, CVE-2014-0221, CVE- 2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470)

Summary Security vulnerabilities have been discovered in OpenSSL. Vulnerability Details CVE-ID: CVE-2014-0224 DESCRIPTION: OpenSSL is vulnerable to a man-in-the-middle attack, caused by the use of weak keying material in SSL/TLS clients and servers. A remote attacker could exploit this...

7.4CVSS8.2AI score0.99977EPSS
Exploits13Affected Software1
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.104 views

Azure File Sync Agent v8 Release – October 2019

None None...

5.8AI score
Exploits0
Rows per page
Query Builder