Lucene search
K

5 matches found

CVE
CVE
added 2026/07/06 8:5 a.m.11 views

CVE-2026-46726

Apache Camel Vertx Websocket: the inbound WebSocket consumer maps external query/path parameters into the Exchange header map without HeaderFilterStrategy, enabling injection of Camel headers (e.g., CamelHttpUri) and potential server-side request forgery (SSRF) to attacker-controlled URIs. The HT...

7.5CVSS6AI score0.00536EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2025/09/29 5:15 p.m.6 views

CVE-2025-51495

An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component improperly, the issue may lead to a buffer overflow...

7.5CVSS5.8AI score0.00399EPSS
Exploits1References3
OSV
OSV
added 2025/09/29 5:15 p.m.6 views

UBUNTU-CVE-2025-51495

An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component improperly, the issue may lead to a buffer overflow...

7.5CVSS6.2AI score0.00399EPSS
Exploits1References4
OSV
OSV
added 2025/09/29 12:0 a.m.6 views

CVE-2025-51495

An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component improperly, the issue may lead to a buffer overflow...

7.5CVSS7.5AI score0.00399EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2021/12/03 12:0 a.m.5 views

The vulnerability of the SD-WAN system “Bohatka,” related to deficiencies in authentication procedures, allows attackers to bypass the authentication mechanism.

The vulnerability of the SD-WAN system “Bohatka” is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication mechanism in the WebSocket component by using a forged access token...

7.5CVSS5.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder