Search CVE reports
1 – 10 of 26238 results
CVE-2024-56374
Medium priorityPotential denial-of-service vulnerability in IPv6 validation
1 affected package
python-django
Package | 22.04 LTS |
---|---|
python-django | Fixed |
CVE-2025-23109
Medium priorityLong hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox for iOS < 134.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2025-23108
Medium priorityOpening Javascript links in a new tab via long-press in the Firefox iOS client could result in a malicious script spoofing the URL of the new tab. This vulnerability affects Firefox for iOS < 134.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2025-23022
Medium priorityFreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.
1 affected package
freetype
Package | 22.04 LTS |
---|---|
freetype | Vulnerable |
CVE-2025-23016
Medium priorityFastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c.
1 affected package
libfcgi
Package | 22.04 LTS |
---|---|
libfcgi | Needs evaluation |
CVE-2024-6763
Medium priority(Eclipse Jetty is a lightweight, highly scalable, Java-based web server ...)
2 affected packages
jetty, jetty9
Package | 22.04 LTS |
---|---|
jetty | Not in release |
jetty9 | Needs evaluation |
CVE-2024-6762
Medium priority(Jetty PushSessionCacheFilter can be exploited by unauthenticated users ...)
2 affected packages
jetty, jetty9
Package | 22.04 LTS |
---|---|
jetty | Not in release |
jetty9 | Needs evaluation |
CVE-2024-6531
Medium priority(A vulnerability has been identified in Bootstrap that exposes users to ...)
2 affected packages
twitter-bootstrap3, twitter-bootstrap4
Package | 22.04 LTS |
---|---|
twitter-bootstrap3 | Needs evaluation |
twitter-bootstrap4 | Needs evaluation |
CVE-2024-6484
Medium priority(A vulnerability has been identified in Bootstrap that exposes users to ...)
2 affected packages
twitter-bootstrap3, twitter-bootstrap4
Package | 22.04 LTS |
---|---|
twitter-bootstrap3 | Needs evaluation |
twitter-bootstrap4 | Needs evaluation |
CVE-2024-6384
Medium priorityNot in release
("Hot" backup files may be downloaded by underprivileged users, if they ...)
1 affected package
mongodb
Package | 22.04 LTS |
---|---|
mongodb | Not in release |