Search CVE reports
1 – 10 of 36525 results
(Observable Timing Discrepancy vulnerabilitywhen comparing AJP secret i ...)
6 affected packages
tomcat6, tomcat7, tomcat8, tomcat9, tomcat10, tomcat11
| Package | 24.04 LTS |
|---|---|
| tomcat6 | Not in release |
| tomcat7 | Not in release |
| tomcat8 | Not in release |
| tomcat9 | Vulnerable |
| tomcat10 | Vulnerable |
| tomcat11 | Not in release |
(Improper Handling of Case Sensitivity vulnerability in LockOutRealm in ...)
6 affected packages
tomcat6, tomcat7, tomcat8, tomcat9, tomcat10, tomcat11
| Package | 24.04 LTS |
|---|---|
| tomcat6 | Not in release |
| tomcat7 | Not in release |
| tomcat8 | Not in release |
| tomcat9 | Vulnerable |
| tomcat10 | Vulnerable |
| tomcat11 | Not in release |
Decoding a paletted BMP file with an out-of-range palette index results in a panic when accessing pixels in the invalid image.
1 affected package
golang-golang-x-image
| Package | 24.04 LTS |
|---|---|
| golang-golang-x-image | Needs evaluation |
Not in release
Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, Mermaid's default configuration allows injecting CSS that applies outside of the Mermaid diagram...
1 affected package
node-mermaid
| Package | 24.04 LTS |
|---|---|
| node-mermaid | Not in release |
Not in release
Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, there is a denial-of-service attack when rendering gantt charts, if they use the excludes...
1 affected package
node-mermaid
| Package | 24.04 LTS |
|---|---|
| node-mermaid | Not in release |
Not in release
(An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-al ...)
1 affected package
dolibarr
| Package | 24.04 LTS |
|---|---|
| dolibarr | Not in release |
Not in release
(An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-al ...)
1 affected package
dolibarr
| Package | 24.04 LTS |
|---|---|
| dolibarr | Not in release |
Not in release
(An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-al ...)
1 affected package
dolibarr
| Package | 24.04 LTS |
|---|---|
| dolibarr | Not in release |
[Unknown description]
1 affected package
apache-directory-api
| Package | 24.04 LTS |
|---|---|
| apache-directory-api | Needs evaluation |
Not in release
(Ruby LSP is an implementation of the language server protocol for Ruby ...)
1 affected package
ruby-ruby-lsp
| Package | 24.04 LTS |
|---|---|
| ruby-ruby-lsp | Not in release |