Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Csaf-validator-lib Project Subscribe
Filtered by product Csaf-validator-lib
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-47925 1 Csaf-validator-lib Project 1 Csaf-validator-lib 2024-11-21 N/A 7.5 HIGH
The validate JSON endpoint of the Secvisogram csaf-validator-service in versions < 0.1.0 processes tests with unexpected names. This insufficient input validation of requests by an unauthenticated remote user might lead to a partial DoS of the service. Only the request of the attacker is affected by this vulnerability.
CVE-2022-47924 1 Csaf-validator-lib Project 1 Csaf-validator-lib 2024-11-21 N/A 6.5 MEDIUM
An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib of a locally installed Secvisogram in versions < 0.1.0 wich can result in arbitrary code execution and DoS once the users triggers the validation.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024