CVSS: 7.5EPSS: 0%CPEs: 38EXPL: 0CVE-2021-37136 – netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data
https://notcve.org/view.php?id=CVE-2021-37136
19 Oct 2021 — The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack La función Bzip2 decompression decoder no permite establecer restricciones de tamaño en los datos de salida descomprimidos (lo que afecta al tamaño de asignación usado durante la descompresión). Todos los usuarios de Bzip2Decoder están ... • https://github.com/netty/netty/security/advisories/GHSA-grg4-wf29-r9vv • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.7EPSS: 0%CPEs: 4EXPL: 0CVE-2016-0679
https://notcve.org/view.php?id=CVE-2016-0679
21 Apr 2016 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect integrity and availability via vectors related to PIA Grids. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise PeopleTools en Oracle PeopleSoft Products 8.53, 8.54 y 8.55 permite a usuarios remotos autenticados afectar a la integridad y disponibilidad a través de vectores relacionados con PIA Grids. • http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2013-3759
https://notcve.org/view.php?id=CVE-2013-3759
17 Jul 2013 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect integrity via vectors related to PIA Search Functionality. Vulnerabilidad sin especificar en el componente PeopleSoft Enterprise PeopleTools en Oracle PeopleSoft Products 8.52 y 8.53, permite a atacantes remotos comprometer la integridad a través de vectores desconocidos relacionados con PIA Search Functionality. • http://osvdb.org/95297 •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-3761
https://notcve.org/view.php?id=CVE-2013-3761
17 Jul 2013 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products Portal 9.1 and PeopleTools 8.52 allows remote attackers to affect integrity via vectors related to PIA Core Technology. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise PeopleTools en Oracle PeopleSoft Products Portal v9.1 y PeopleTools v8.52 permite a atacantes remotos afectar la integridad mediante vectores relacionados con PIA Core Technology. • http://secunia.com/advisories/54233 •
CVSS: 4.1EPSS: 0%CPEs: 3EXPL: 0CVE-2013-2406
https://notcve.org/view.php?id=CVE-2013-2406
17 Apr 2013 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote authenticated users to affect integrity via vectors related to PIA Core Technology. Vulnerabilidad no especificada en el componenete PeopleSoft Enterprise PeopleTools de Oracle PeopleSoft Products v8.51, v8.52, y v8.53 que permite a los usuarios remotos autenticados afectar a la integridad a través de vectores relacionados con el PIA Core Technology. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2013-2409
https://notcve.org/view.php?id=CVE-2013-2409
17 Apr 2013 — Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.51, 8.52, and 8.53 allows remote attackers to affect confidentiality via vectors related to PIA Core Technology. Vulnerabilidad no especificada en el componente PeopleSoft Enterprise PeopleTools de Oracle PeopleSoft productos v8.51, v8.52, y v8.53 que permite a atacantes remotos afectar la confidencialidad a través de vectores relacionados con el PIA Core Technology. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •