-
**Description**
A stack overflow in the "org.json.JSONTokener.nextValue::JSONTokener.java" component of hutool-json allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data.…
-
**Issue Summary –**
Issue: Our tests revealed that the ONOS A1 Termination component of SD RAN ORAN deployment was susceptible to a Denial of Service attack through the continuous replay of concu…
-
### Component(s)
processor/k8sattributes
### What happened?
## Description
I am trying to add `k8sattributes` to a gateway collector, but the collector and health check are not functioning. The co…
-
Tracking issue for:
- [ ] https://github.com/2lambda123/cisagov-Malcolm/security/code-scanning/42
-
Tracking issue for:
- [ ] https://github.com/2lambda123/cisagov-Malcolm/security/code-scanning/103
-
## CVE-2023-27539 - High Severity Vulnerability
Vulnerable Library - rack-2.2.3.gem
Rack provides a minimal, modular and adaptable interface for developing
web applications in Ruby. By wrapping HTTP…
-
Vulnerable Library - torch-1.13.1-cp37-cp37m-manylinux1_x86_64.whl
Tensors and Dynamic neural networks in Python with strong GPU acceleration
Library home page: https://files.pythonhosted.org/packag…
-
Vulnerable Library - Werkzeug-2.2.3-py3-none-any.whl
The comprehensive WSGI web application library.
Library home page: https://files.pythonhosted.org/packages/f6/f8/9da63c1617ae2a1dec2fbf6412f3a0cf…
-
## CVE-2022-40151 - Medium Severity Vulnerability
Vulnerable Library - xstream-1.4.18.jar
Library home page: http://x-stream.github.io
Path to dependency file: /pom.xml
Path to vulnerable library: …
-
My Security Team has run a scan on this extension that I love and found that the moment.js version have critical security problems.
Vulnerability Details:
The Moment JavaScript library (moment.js)…