Filter
AND
AND
IBM Cognos Analyticsbody-parser vulnerable to denial of service when url encoding is enabled
7.5
First published (updated )
npm/path-to-regexppath-to-regexp outputs backtracking regular expressions
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/wsDenial of service when handling a request with many HTTP headers in ws
7.5
First published (updated )
IBM Cognos AnalyticsDecompressors can crash the JVM and leak memory content in Aircompressor
8.6
First published (updated )
IBM Cognos AnalyticsMemory Exhaustion in braces
7.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsAn issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification…
7.5
First published (updated )
IBM Cognos AnalyticsNodeJS Command injection via args parameter of child_process.spawn without shell option enabled on Windows (CVE-2024-27980)
7.3
First published (updated )
IBM Cognos AnalyticsAstro-Shield's Content-Security-Policy header generation in middleware could be compromised by malicious injections
7.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsApache Commons Configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()
7.3
EPSS
0.04%
First published (updated )
IBM Cognos AnalyticsHTTP/2 push headers memory-leak
8.6
EPSS
0.04%
First published (updated )
IBM Cognos Analyticsastropy vulnerable to RCE in TranformGraph().to_dot_graph function
8.4
First published (updated )
maven/org.clojure:clojureAn issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (…
7.5
First published (updated )
maven/org.eclipse.jetty.http2:http2-commonJetty connection leaking on idle timeout when TCP congested
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsApache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file
8.1
EPSS
0.06%
First published (updated )
maven/org.apache.solr:solr-coreApache Solr: System Property redaction logic inconsistency can lead to leaked passwords
7.5
EPSS
0.11%
First published (updated )
maven/org.apache.solr:solr-coreApache Solr: Solr Schema Designer blindly "trusts" all configsets, possibly leading to RCE by unauthenticated users
7.5
EPSS
0.11%
First published (updated )
Apache SolrApache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions
7.5
EPSS
0.05%
First published (updated )
maven/org.apache.solr:solr-coreApache Solr: Backup/Restore APIs allow for deployment of executables in malicious ConfigSets
8.8
EPSS
0.13%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/expatlibexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsing…
7.5
First published (updated )
ubuntu/pillowPillow 10.2.0 released, fixes CVE-2023-50447
8.1
First published (updated )
Apple iOSLibtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service
7.5
First published (updated )
ubuntu/xerces-cHCL BigFix Platform is vulnerable to an integer overflow in xerces-c++ 3.2.3
8.8
First published (updated )
ubuntu/glibcGlibc: dos due to memory leak in getaddrinfo.c
7.5
EPSS
0.09%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.