379 matches found
CVE-2025-24946
The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs...
CVE-2025-24946
The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs...
CLSA-2025-1739961948 bind: Fix of CVE-2023-4408
CVE-2023-4408: fix high CPU load in ‘named’ while parsing large DNS messages...
Azure Linux 3.0 Security Update: bind (CVE-2023-4408)
The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...
CVE-2024-4227
In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...
CVE-2024-4227
In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...
CVE-2024-4227
In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...
CVE-2024-4227 gSOAP: Vulnerable to specially crafted unencrypted SDC messages
In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...
CVE-2024-4227
CVE-2024-4227 affects Genivia gSOAP. A specific configuration allows an unauthenticated remote attacker to cause high CPU load by forcing the XML parser to process duplicate ID attributes, leading to a DoS. The vulnerability is tied to the gSOAP XML parsing behavior; impact is denial of service w...
CVE-2024-4227
In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...
PT-2025-2635 · Genivia · Gsoap
Name of the Vulnerable Software and Affected Versions: Genivia gSOAP affected versions not specified Description: The issue allows an unauthenticated remote attacker to generate a high CPU load by forcing the system to parse an XML with duplicate ID attributes, potentially leading to a Denial of...
CVE-2023-6604
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...
CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...
CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...
CVE-2023-6604
CVE-2023-6604 affects FFmpeg and is described across multiple connected sources as a flaw where demuxing arbitrary data as XBIN-formatted data can cause unexpected CPU load or storage consumption, leading to degraded performance or DoS. The Debian LTS advisory (DLA-4241-1) and related Nessus entr...
CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...
CVE-2023-6604
A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...
PT-2025-1563 · FFmpeg +1 · Ffmpeg +1
Name of the Vulnerable Software and Affected Versions: FFmpeg affected versions not specified Description: A flaw was found in FFmpeg, allowing unexpected additional CPU load and storage consumption. This can lead to degraded performance or denial of service via the demuxing of arbitrary data as...
RHEL 6 : bind and bind-dyndb-ldap (RHSA-2025:0039)
"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0039 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...
PT-2024-36737 · Altair · Altair
Name of the Vulnerable Software and Affected Versions: Altair versions prior to v12.24Q4.1 Description: The issue is related to a lack of validation and authentication in the image proxy for compressing and resizing remote files, which could allow attacks affecting availability. This could result...