Skip to main content

CWE-173

Improper Handling of Alternate Encoding

3 CVEs Avg CVSS 5.4 MITRE
0
CRITICAL
0
HIGH
3
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2024-54158 MEDIUM This Month

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Youtrack
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2023-26303 PyPI MEDIUM PATCH This Month

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Markdown It Py
NVD GitHub
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-26302 PyPI MEDIUM PATCH This Month

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Markdown It Py
NVD GitHub
CVSS 3.1
5.5
EPSS
0.2%
EPSS 0% CVSS 5.3
MEDIUM This Month

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Youtrack
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Markdown It Py
NVD GitHub
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Markdown It Py
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy