Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-0500

Malware in sbrugna...

7.5CVSS7AI score0.09438EPSS
Exploits0References104
Tenable Nessus
Tenable Nessus
added 2023/04/28 12:0 a.m.39 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 LTS : Netty vulnerabilities (USN-6049-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6049-1 advisory. It was discovered that Netty's Zlib decoders did not limit memory allocations. A remote attacker could possibly use...

7.5CVSS6.6AI score0.18891EPSS
Exploits3References10
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/03 3:3 p.m.42 views

Security Bulletin: Netty security vulnerabilities with ZlibDecoders on IBM Watson Machine Learning Server

Summary Netty is vulnerable to a denial of service, caused by unbounded memory allocation while decoding a ZlibEncoded byte stream in the ZlibDecoders on IBM Watson Machine Learning Server Vulnerability Details CVEID: CVE-2020-11612 DESCRIPTION: Netty is vulnerable to a denial of service, caused ...

7.5CVSS1AI score0.09438EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.3 views

The vulnerability of the ZlibDecoders class implementation in the Netty network programming framework allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ZlibDecoders class implementation in the Netty network programming framework is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS6.9AI score0.09438EPSS
Exploits0References10Affected Software18
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.47 views

Debian DLA-2364-1 : netty security update

Several vulnerabilities have been discovered in netty, a Java NIO client/server socket framework. CVE-2019-20444 HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might be interpreted as a separate header with an incorrect syntax, or might be interprete...

9.1CVSS6.9AI score0.13474EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2020/09/05 12:0 a.m.32 views

Debian: Security Advisory (DLA-2364-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.6AI score0.13474EPSS
Exploits3References4
Debian
Debian
added 2020/09/04 6:39 p.m.65 views

[SECURITY] [DLA 2364-1] netty security update

Debian LTS Advisory DLA-2364-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez September 04, 2020 https://wiki.debian.org/LTS Package : netty Version : 1:4.1.7-2+deb9u2 CVE ID : CVE-2019-20444 CVE-2019-20445 CVE-2020-7238 CVE-2020-11612 Debian Bug : 950966 9509...

9.1CVSS6.9AI score0.13474EPSS
Exploits4
OSV
OSV
added 2020/06/15 7:36 p.m.63 views

GHSA-MM9X-G8PC-W292 Denial of Service in Netty

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS7.5AI score0.09438EPSS
Exploits0References46
Github Security Blog
Github Security Blog
added 2020/06/15 7:36 p.m.91 views

Denial of Service in Netty

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS5AI score0.09438EPSS
Exploits0References47Affected Software1
CNVD
CNVD
added 2020/04/08 12:0 a.m.2 views

Netty Buffer Overflow Vulnerability

Netty is a non-blocking I/O client-server framework from the Netty community, which is primarily used for developing Java web applications such as protocol servers and clients. A buffer overflow vulnerability exists in ZlibDecoders in versions 4.1.x prior to Netty 4.1.46, which stems from a...

7.5CVSS8.8AI score0.09438EPSS
Exploits0References1
NVD
NVD
added 2020/04/07 6:15 p.m.36 views

CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS8.2AI score0.09438EPSS
Exploits0References45
OSV
OSV
added 2020/04/07 6:15 p.m.27 views

CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS6.6AI score
Exploits0References45
UbuntuCve
UbuntuCve
added 2020/04/07 6:15 p.m.40 views

CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS6.9AI score0.09438EPSS
Exploits0References13
Prion
Prion
added 2020/04/07 6:15 p.m.33 views

Design/Logic Flaw

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

5CVSS8.3AI score0.09438EPSS
Exploits0References45Affected Software10
Cvelist
Cvelist
added 2020/04/07 6:0 p.m.28 views

CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

8.2AI score0.09438EPSS
Exploits0References45
Debian CVE
Debian CVE
added 2020/04/07 6:0 p.m.27 views

CVE-2020-11612

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder...

7.5CVSS7.1AI score0.09438EPSS
Exploits0
CVE
CVE
added 2020/04/07 6:0 p.m.320 views

CVE-2020-11612

Netty CVE-2020-11612 affects Netty 4.1.x before 4.1.46, where ZlibDecoders may allocate memory without bounds while decoding a ZlibEncoded stream, potentially exhausting server memory. Affected product: Netty 4.1.x (ZlibDecoders). Remediation: upgrade to Netty 4.1.46.Final or later. The documents...

7.5CVSS7.3AI score0.09438EPSS
Exploits0References45Affected Software1
Rows per page
Query Builder