24h | 7d | 30d

Overview

  • Pending

18 Feb 2025
Published
03 Nov 2025
Updated

CVSS
Pending
EPSS
0.18%

KEV

Description

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.

Statistics

  • 1 Post

Last activity: 12 hours ago

Bluesky

Profile picture
CRITICAL UPDATE: #Fedora 43 patches a high-sev DoS vuln in WasmEdge (CVE-2025-22921). This WebAssembly runtime flaw can crash apps. Essential for #edgecomputing & #serverless. Read more: 👉 tinyurl.com/3b5uv4nw #Security
  • 0
  • 0
  • 0
  • 12h ago

Overview

  • coreruleset
  • coreruleset

08 Jan 2026
Published
08 Jan 2026
Updated

CVSS v3.1
CRITICAL (9.3)
EPSS
0.03%

KEV

Description

The OWASP core rule set (CRS) is a set of generic attack detection rules for use with compatible web application firewalls. Prior to versions 4.22.0 and 3.3.8, the current rule 922110 has a bug when processing multipart requests with multiple parts. When the first rule in a chain iterates over a collection (like `MULTIPART_PART_HEADERS`), the capture variables (`TX:0`, `TX:1`) get overwritten with each iteration. Only the last captured value is available to the chained rule, which means malicious charsets in earlier parts can be missed if a later part has a legitimate charset. Versions 4.22.0 and 3.3.8 patch the issue.

Statistics

  • 1 Post

Last activity: 8 hours ago

Bluesky

Profile picture
📌 Critical WAF Bypass Vulnerability (CVE-2026-21876) Affects OWASP ModSecurity and Coraza https://www.cyberhub.blog/article/17896-critical-waf-bypass-vulnerability-cve-2026-21876-affects-owasp-modsecurity-and-coraza
  • 0
  • 0
  • 0
  • 8h ago
Showing 21 to 22 of 22 CVEs