Lucene search
K

9 matches found

Snyk
Snyk
added 2026/05/18 7:10 p.m.10 views

Infinite loop

Overview Microsoft.AspNetCore.App.Runtime.win-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Infinite loop in the FormDataReader.ProcessFormKeys...

8.7CVSS5.8AI score0.0243EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/04 11:16 a.m.2 views

CVE-2025-14938

The Listeo Core plugin for WordPress is vulnerable to unauthenticated arbitrary media upload in all versions up to, and including, 2.0.27 via the "listeocorehandledroppedmedia" function. This is due to missing authorization and capability checks on the AJAX endpoint handling file uploads. This...

5.3CVSS6.1AI score0.00304EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:29 a.m.3 views

SUSE CVE-2022-21322

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where th...

6.3CVSS5.8AI score0.02621EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/10/25 9:10 a.m.3 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS7.3AI score0.0127EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.8 views

quic-go 资源管理错误漏洞

quic-go is an implementation of the QUIC protocol, RFC 9000 protocol in Go by Lucas Clemente, a personal developer. A resource management error vulnerability exists in quic-go version 0.27.0 and earlier. A remote attacker can cause a denial of service by sending a Slowloris variant of an incomple...

7.5CVSS7.4AI score0.02825EPSS
Exploits2References1
Circl
Circl
added 2022/01/30 4:23 p.m.32 views

CVE-2022-0273

creationtimestamp| type| source ---|---|--- 2022-01-30 16:23:55+00:00| seen| https://t.me/cibsecurity/36567...

6.5CVSS4.7AI score0.0067EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2022/01/25 8:0 a.m.2 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 7.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H).

...

7.1CVSS6.8AI score0.0127EPSS
Exploits0
OSV
OSV
added 2022/01/19 12:15 p.m.1 views

UBUNTU-CVE-2022-21304

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

4.9CVSS6.5AI score0.0175EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/08/06 2:22 p.m.6 views

exiv2: Heap-based buffer over-read in Exiv2::tEXtToDataBuf function resulting in a denial of service

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6AI score0.02762EPSS
Exploits1References4
Rows per page
Query Builder