Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2025/12/27 12:15 a.m.2 views

CVE-2025-68474

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and earlier, in the avrcvendormsg function of the ESP-IDF BlueDroid AVRCP stack, the allocated buffer size was validated using AVRCMINCMDLEN 20 bytes. However, the actual fixed...

7.6CVSS0.00007EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2023/12/07 1:15 p.m.2 views

CVE-2023-49955

An issue was discovered in Dalmann OCPP.Core before 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. It does not validate the length of the chargePointVendor field in a BootNotification message, potentially leading to server instability and a denial of service when processing...

7.5CVSS7.1AI score0.00379EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/12/07 12:0 a.m.2 views

Dalmann OCPP.Core Security Vulnerability

Dalmann OCPP.Core is an OCPP Open Charge Point Protocol server written in .NET 6 by Ulrich Personal Developer. A security vulnerability exists in Dalmann OCPP.Core versions prior to 1.2.0, which stems from the server not validating the length of the chargePointVendor field in BootNotification...

7.5CVSS7.5AI score0.00379EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:48 a.m.1 views

SUSE CVE-2012-1108

The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service crash via a crafted vendorLength field in an ogg file...

4.3CVSS6.7AI score0.04038EPSS
Exploits1References7
OSV
OSVadded 2012/09/06 6:55 p.m.1 views

DEBIAN-CVE-2012-1108

The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service crash via a crafted vendorLength field in an ogg file...

4.3CVSS7.7AI score0.04038EPSS
Exploits1References1
Cvelist
Cvelistadded 2002/06/11 4:0 a.m.19 views

CVE-2001-1377

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service crash via a Vendor-Length that is less than 2...

6.6AI score0.13337EPSS
Exploits0References9
CVE
CVEadded 2002/06/11 4:0 a.m.52 views

CVE-2001-1377

CVE-2001-1377 affects multiple RADIUS implementations that fail to validate the Vendor-Length of Vendor-Specific attributes, enabling a remote attacker to crash the server when Vendor-Length

5CVSS6.6AI score0.13337EPSS
Exploits0References9Affected Software11
NVD
NVDadded 2002/03/04 5:0 a.m.15 views

CVE-2001-1377

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service crash via a Vendor-Length that is less than 2...

5CVSS6.6AI score0.13337EPSS
Exploits0References9
CERT
CERTadded 2002/03/04 12:0 a.m.61 views

Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes

Overview Various RADIUS servers and clients permit the passing of vendor-specific and user-specific attributes. Several implementations of RADIUS fail to check the Vendor-Length of the Vendor-Specific attribute. It's possible to cause a denial of service against RADIUS servers with a malformed...

5CVSS7.3AI score0.13337EPSS
Exploits0References2
Rows per page
Query Builder