Lucene search
K

5 matches found

EUVD
EUVD
added 2026/05/18 6:34 a.m.13 views

EUVD-2026-30739

Net::Statsd::Lite versions through 0.10.0 for Perl allowed metric injections. The values from the setadd method were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that version 0.9.0 fixed a similar issue...

5.8AI score0.00306EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/19 3:31 p.m.7 views

EUVD-2025-204541

Turms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an image decompression bomb denial of service vulnerability. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java loads images using OpenCV's imread function without validating dimensions or pixel count before...

7.5CVSS6.5AI score0.0046EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/05/10 12:0 a.m.4 views

PoDoFo 资源管理错误漏洞

PoDoFo is a free portable C++ library open-sourced by PoDoFo. A resource management error vulnerability exists in PoDoFo version 0.10.0, which stems from the function PoDoFo::PdfEncrypt::IsMetadataEncrypted containing heap reuse after release. A remote attacker can exploit this vulnerability to...

8.8CVSS6.8AI score0.0074EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.2 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitcalcCRC ... /... /src/bits.c:2213 to exploit the vulnerability and cause a heap buffer overflow...

8.8CVSS6.2AI score0.01232EPSS
Exploits1References3
OSV
OSV
added 2020/09/01 10:15 a.m.2 views

UBUNTU-CVE-2020-7720

The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions...

9.8CVSS7.2AI score0.03162EPSS
Exploits1References6
Rows per page
Query Builder