Lucene search
K

7 matches found

EUVD
EUVD
added 10 hours ago6 views

EUVD-2026-41530

A vulnerability exists in the Kong Konnect Model Context Protocol MCP server prior to version 1.0.0, which could allow a remote attacker to perform an indirect prompt injection attack and execute unintended API requests...

7.4CVSS6.1AI score
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Firefox

Memory safety bugs exist in Firefox 114. Some of these bugs exhibited signs of memory corruption, and we assume that with sufficient effort, some of these bugs could have been exploited to execute arbitrary code. This vulnerability affects Firefox versions prior to 115...

8.8CVSS8.5AI score0.00533EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/12/17 12:15 p.m.5 views

CVE-2024-8429

Improper Restriction of Excessive Authentication Attempts vulnerability in Digital Operation Services WiFiBurada allows Use of Known Domain Credentials. This issue affects WiFiBurada: before 1.0.5...

4.3CVSS5.8AI score0.00379EPSS
Exploits0References3
OSV
OSV
added 2023/10/10 2:15 p.m.11 views

AZL-31291 CVE-2023-44487 affecting package application-gateway-kubernetes-ingress for versions less than 1.4.0-15

The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...

7.5CVSS6.7AI score0.99999EPSS
Exploits19References1
OSV
OSV
added 2023/07/11 8:15 p.m.5 views

AZL-37418 CVE-2023-29406 affecting package golang for versions less than 1.21.6-1

The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS6.7AI score0.0125EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.5 views

CVE-2022-1887

The search term could have been specified externally to trigger SQL injection. This vulnerability affects Firefox for iOS 101...

9.3AI score0.00581EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/11/15 10:31 a.m.4 views

prometheus/client_golang: Denial of service using InstrumentHandlerCounter

A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...

7.5CVSS6.8AI score0.05994EPSS
Exploits0References5
Rows per page
Query Builder