-
**Description**
A flaw was found in Undertow versions prior to 2.2.15.Final, that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carr…
-
according rfc8446 4.1.2.7
>Note that if DTLS is run over UDP, then any
implementation which does this will be extremely susceptible to
denial-of-service (DoS) attacks because UDP forgery is so easy…
-
Describe the bug
----------------
Building 1.4.1 on aarch64 RHEL 8.10 in FIPS mode, python 3.11 fails clamscan and clamscan_valgrind due to MD5 being deprecated in FIPS mode.
How to reprodu…
-
Vulnerable Library - fonttools-4.38.0-py3-none-any.whl
Tools to manipulate font files
Library home page: https://files.pythonhosted.org/packages/e3/d9/e9bae85e84737e76ebbcbea13607236da0c0699baed0ae4…
-
## **Vulnerability Report for Feng**
### **Application**
- **Name**: [Feng](https://github.com/lscube/feng)
- **Versions**: 2.1.0_rc1
- **Platforms**: Linux
- **Exploitation**: Remote
- **Da…
-
# Architecture
This document outlines the architecture of the AI Nutrition-Pro application, including system context, containers, and deployment views. The architecture is depicted using C4 diagram…
-
**Description**
During signature verification cosign calculates the signature tag by using the artifact digest. ArtifactPath:sha256-Artifact Digest.sig
Using this tag cosign download the signature…
-
# Summary
LimeSurvey is a widely used open-source online survey system. In version v6.3.0-231016, an input validation vulnerability has been identified, allowing attackers to exploit a vulnerability …
-
### Describe the problem
rate limiting is a basic security problem that is left up to the developer. but it really shouldn't be, particularly for a backend/fullstack framework.
not handling thi…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Apache Commons FileUpload
Description | The Apache Commons FileUpload com…