24h | 7d | 30d

CVE-2025-22921

Overview

  • Pending
18 Feb 2025
Published
03 Nov 2025
Updated
CVSS
Pending
EPSS
0.18%
KEV

Description

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.

Statistics

  • 1 Post
Last activity: 12 hours ago

Bluesky

Profile picture
ferramentaslinux.bsky.social @ferramentaslinux.bsky.social
CRITICAL UPDATE: #Fedora 43 patches a high-sev DoS vuln in WasmEdge (CVE-2025-22921). This WebAssembly runtime flaw can crash apps. Essential for #edgecomputing & #serverless. Read more: 👉 tinyurl.com/3b5uv4nw #Security
  • 0
  • 0
  • 0
  • 12h ago

CVE-2026-21876

Overview

  • coreruleset
  • coreruleset
08 Jan 2026
Published
08 Jan 2026
Updated
CVSS v3.1
CRITICAL (9.3)
EPSS
0.03%
KEV

Description

The OWASP core rule set (CRS) is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 4.22.0 and 3.3.8, the current rule 922110 has a bug when processing multipart requests with multiple parts. When the first rule in a chain iterates over a collection (like `MULTIPART_PART_HEADERS`), the capture variables (`TX:0`, `TX:1`) get overwritten with each iteration. Only the last captured value is available to the chained rule, which means malicious charsets in earlier parts can be missed if a later part has a legitimate charset. Versions 4.22.0 and 3.3.8 patch the issue.

Statistics

  • 1 Post
Last activity: 8 hours ago

Bluesky

Profile picture
CyberHub @cyberhub.blog
📌 Critical WAF Bypass Vulnerability (CVE-2026-21876) Affects OWASP ModSecurity and Coraza https://www.cyberhub.blog/article/17896-critical-waf-bypass-vulnerability-cve-2026-21876-affects-owasp-modsecurity-and-coraza
  • 0
  • 0
  • 0
  • 8h ago
Showing 21 to 22 of 22 CVEs