Search CVE reports
51 – 60 of 30862 results
CVE-2024-47764
Medium prioritycookie is a basic HTTP cookie parser and serializer for HTTP servers. The cookie name could be used to set other fields of the cookie, resulting in an unexpected cookie value. A similar escape can be used for path and domain,...
1 affected packages
node-cookie
Package | 18.04 LTS |
---|---|
node-cookie | Needs evaluation |
CVE-2024-47211
Medium priorityIn OpenStack Ironic before 21.4.4, 22.x and 23.x before 23.0.3, 23.x and 24.x before 24.1.3, and 25.x and 26.x before 26.1.0, there is a lack of checksum validation of supplied image_source URLs when configured to convert images...
1 affected packages
ironic
Package | 18.04 LTS |
---|---|
ironic | Needs evaluation |
CVE-2024-6444
Medium priorityNo proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c.
1 affected packages
zephyr
Package | 18.04 LTS |
---|---|
zephyr | Needs evaluation |
CVE-2024-6443
Medium priorityIn utf8_trunc in zephyr/lib/utils/utf8.c, last_byte_p can point to one byte before the string pointer if the string is empty.
1 affected packages
zephyr
Package | 18.04 LTS |
---|---|
zephyr | Needs evaluation |
CVE-2024-6442
Medium priorityIn ascs_cp_rsp_add in /subsys/bluetooth/audio/ascs.c, an unchecked tailroom could lead to a global buffer overflow.
1 affected packages
zephyr
Package | 18.04 LTS |
---|---|
zephyr | Needs evaluation |
CVE-2024-47855
Medium priorityutil/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string.
1 affected packages
libjson-java
Package | 18.04 LTS |
---|---|
libjson-java | Needs evaluation |
CVE-2024-47850
Medium priorityCUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The...
2 affected packages
cups-browsed, cups-filters
Package | 18.04 LTS |
---|---|
cups-browsed | — |
cups-filters | Fixed |
CVE-2024-47191
Medium priorityLocal root exploit in the PAM module pam_oath.so
1 affected packages
oath-toolkit
Package | 18.04 LTS |
---|---|
oath-toolkit | Not affected |
CVE-2024-9266
Medium priorityURL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. This issue impacts Express: from 3.4.5 before 4.0.0.
1 affected packages
node-express
Package | 18.04 LTS |
---|---|
node-express | Needs evaluation |
CVE-2024-8508
Medium priorityNLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can...
1 affected packages
unbound
Package | 18.04 LTS |
---|---|
unbound | Needs evaluation |