Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
MessagePack-CSharp: LZ4 decompression allocates from unbounded declared output lengths
MessagePack-CSharp: Unity unsafe blit formatter allocates from unbounded byte length
MessagePack-CSharp: Multi-dimensional array formatters allocate from unchecked dimensions
Capgo - Rate Limit Bypass via User-Controlled device_id Parameter
Capgo - Denial of Service via Unlimited Demo App Creation
Gophish 0.12.1 Denial of Service via Office Document Upload
opentelemetry-js: Unbounded memory allocation in W3C Baggage propagation
Starlette: request.form() limits silently ignored for application/x-www-form-urlencoded enable DoS
AIOHTTP: HTTP/1 Pipelined Requests Queue Without Limit
AIOHTTP: C HTTP Parser Bypasses max_line_size for Fragmented Lines
AIOHTTP: Incomplete websocket frame payloads bypass memory limits
protobufjs: Memory amplification from preserved unknown fields in binary decode
Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data.
libde265 has an unbounded memory leak via orphaned slice headers in `read_slice_NAL`
DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform
Hermes WebUI < 0.51.468 - Resource Exhaustion via Unauthenticated OAuth Flow Endpoint
joserfc: b64=false RFC7797 JWS payloads bypass JWSRegistry payload-size limits during deserialization
Envoy vulnerable to HTTP/2 memory exhaustion via cookie header size bypass and HPACK amplification
undici WebSocket client vulnerable to denial of service via cumulative fragment bypass
undici WebSocket client vulnerable to denial of service via fragment count bypass
Showing 1 - 20 of 1,000+ results