CVE-2025-27820

all versions

A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verific

7.5HIGH

CVE-2025-0167

all versions

When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the firs

3.4LOW

CVE-2024-52533

all versions

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN

9.8CRITICAL

CVE-2024-38286

all versions

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.

8.6HIGH

CVE-2024-49761

all versions

REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits

7.5HIGH

CVE-2024-47554

all versions

Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may e

4.3MEDIUM

CVE-2024-7254

all versions

Any project that parses untrusted Protocol Buffers data containing an arbitrary number of nested groups / series of SGROUP tags

7.5HIGH

CVE-2024-8096

all versions

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the serv

6.5MEDIUM

CVE-2024-6119

all versions

Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to rea

7.5HIGH

CVE-2024-39689

all versions

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the id

7.5HIGH

CVE-2024-39884

all versions

A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers.

6.2MEDIUM

CVE-2024-34750

all versions

Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apache Tomcat. When processing an

7.5HIGH

CVE-2024-6387

all versions

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to

8.1HIGH

CVE-2024-34397

all versions

An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to

5.2MEDIUM

CVE-2024-24795

all versions

HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that can inject malicious response headers in

6.3MEDIUM

CVE-2023-38709

all versions

Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses.

7.3HIGH

CVE-2024-29131

all versions

Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before

7.3HIGH

CVE-2024-26633

all versions

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tl

5.5MEDIUM

CVE-2024-28752

all versions

A SSRF vulnerability using the Aegis DataBinding in versions of Apache CXF before 4.0.4, 3.6.3 and 3.5.8 allows an attacker to per

9.3CRITICAL

CVE-2024-28757

all versions

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_Exter

7.5HIGH

CVE-2024-1351

all versions

Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result i

8.8HIGH

CVE-2023-52433

all versions

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip sync GC for new elements in t

4.4MEDIUM

CVE-2024-0565

all versions

An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-compone

6.8MEDIUM

CVE-2023-36054

all versions

lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A rem

6.5MEDIUM

CVE-2023-2953

all versions

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

7.5HIGH

CVE-2021-44228

all versions

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration

10.0CRITICAL

CVE-2021-28165

< 9.10

In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a

7.5HIGH

CVE-2021-3156

all versions

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalatio

7.8HIGH

CVE-2020-13817

all versions

ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system t

7.4HIGH