Search CVE reports


Toggle filters

1 – 10 of 26238 results

Status is adjusted based on your filters.


CVE-2024-56374

Medium priority
Fixed

Potential denial-of-service vulnerability in IPv6 validation

1 affected package

python-django

Package 22.04 LTS
python-django Fixed
Show less packages

CVE-2025-23109

Medium priority
Vulnerable

Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox for iOS < 134.

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 22.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Not in release
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Ignored
mozjs91 Ignored
thunderbird Vulnerable
Show all 9 packages Show less packages

CVE-2025-23108

Medium priority
Vulnerable

Opening Javascript links in a new tab via long-press in the Firefox iOS client could result in a malicious script spoofing the URL of the new tab. This vulnerability affects Firefox for iOS < 134.

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 22.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Not in release
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Ignored
mozjs91 Ignored
thunderbird Vulnerable
Show all 9 packages Show less packages

CVE-2025-23022

Medium priority
Vulnerable

FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c.

1 affected package

freetype

Package 22.04 LTS
freetype Vulnerable
Show less packages

CVE-2025-23016

Medium priority
Needs evaluation

FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c.

1 affected package

libfcgi

Package 22.04 LTS
libfcgi Needs evaluation
Show less packages

CVE-2024-6763

Medium priority
Needs evaluation

(Eclipse Jetty is a lightweight, highly scalable, Java-based web server ...)

2 affected packages

jetty, jetty9

Package 22.04 LTS
jetty Not in release
jetty9 Needs evaluation
Show less packages

CVE-2024-6762

Medium priority
Needs evaluation

(Jetty PushSessionCacheFilter can be exploited by unauthenticated users ...)

2 affected packages

jetty, jetty9

Package 22.04 LTS
jetty Not in release
jetty9 Needs evaluation
Show less packages

CVE-2024-6531

Medium priority
Needs evaluation

(A vulnerability has been identified in Bootstrap that exposes users to ...)

2 affected packages

twitter-bootstrap3, twitter-bootstrap4

Package 22.04 LTS
twitter-bootstrap3 Needs evaluation
twitter-bootstrap4 Needs evaluation
Show less packages

CVE-2024-6484

Medium priority
Needs evaluation

(A vulnerability has been identified in Bootstrap that exposes users to ...)

2 affected packages

twitter-bootstrap3, twitter-bootstrap4

Package 22.04 LTS
twitter-bootstrap3 Needs evaluation
twitter-bootstrap4 Needs evaluation
Show less packages

CVE-2024-6384

Medium priority

Not in release

(&quot;Hot&quot; backup files may be downloaded by underprivileged users, if they ...)

1 affected package

mongodb

Package 22.04 LTS
mongodb Not in release
Show less packages