Search CVE reports
101 – 110 of 27169 results
CVE-2024-52805
Medium prioritySynapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which...
1 affected package
matrix-synapse
| Package | 20.04 LTS |
|---|---|
| matrix-synapse | Needs evaluation |
CVE-2024-37303
Medium prioritySynapse is an open-source Matrix homeserver. Synapse before version 1.106 allows, by design, unauthenticated remote participants to trigger a download and caching of remote media from a remote homeserver to the local media...
1 affected package
matrix-synapse
| Package | 20.04 LTS |
|---|---|
| matrix-synapse | Needs evaluation |
CVE-2024-37302
Medium prioritySynapse is an open-source Matrix homeserver. Synapse versions before 1.106 are vulnerable to a disk fill attack, where an unauthenticated adversary can induce Synapse to download and cache large amounts of remote media....
1 affected package
matrix-synapse
| Package | 20.04 LTS |
|---|---|
| matrix-synapse | Needs evaluation |
CVE-2024-48916
Medium priorityAuthentication bypass in CEPH RadosGW
1 affected package
ceph
| Package | 20.04 LTS |
|---|---|
| ceph | Not affected |
CVE-2024-53988
Medium priorityrails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible...
1 affected package
ruby-rails-html-sanitizer
| Package | 20.04 LTS |
|---|---|
| ruby-rails-html-sanitizer | Needs evaluation |
CVE-2024-53987
Medium priorityrails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible...
1 affected package
ruby-rails-html-sanitizer
| Package | 20.04 LTS |
|---|---|
| ruby-rails-html-sanitizer | Needs evaluation |
CVE-2024-53986
Medium priorityrails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible...
1 affected package
ruby-rails-html-sanitizer
| Package | 20.04 LTS |
|---|---|
| ruby-rails-html-sanitizer | Needs evaluation |
CVE-2024-53985
Medium priorityrails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0 and Nokogiri...
1 affected package
ruby-rails-html-sanitizer
| Package | 20.04 LTS |
|---|---|
| ruby-rails-html-sanitizer | Needs evaluation |
CVE-2024-53989
Medium priorityrails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. There is a possible XSS vulnerability with certain configurations of Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0. A possible...
1 affected package
ruby-rails-html-sanitizer
| Package | 20.04 LTS |
|---|---|
| ruby-rails-html-sanitizer | Needs evaluation |
CVE-2024-53990
Medium priorityThe AsyncHttpClient (AHC) library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. When making any HTTP request, the automatically enabled and self-managed CookieStore (aka cookie...
1 affected package
async-http-client
| Package | 20.04 LTS |
|---|---|
| async-http-client | Needs evaluation |