Lucene search
K

379 matches found

Vulnrichment
Vulnrichment
added 2025/02/20 12:0 a.m.4 views

CVE-2025-24946

The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs...

5.3CVSS5.3AI score0.00506EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/20 12:0 a.m.13 views

CVE-2025-24946

The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs...

5.3CVSS0.00506EPSS
Exploits0References2
OSV
OSV
added 2025/02/19 10:45 a.m.9 views

CLSA-2025-1739961948 bind: Fix of CVE-2023-4408

CVE-2023-4408: fix high CPU load in ‘named’ while parsing large DNS messages...

7.5CVSS6.8AI score0.01327EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.18 views

Azure Linux 3.0 Security Update: bind (CVE-2023-4408)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 12:17 a.m.7 views

CVE-2024-4227

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...

7.5CVSS7AI score0.00693EPSS
Exploits0References1
OSV
OSV
added 2025/01/15 8:15 a.m.4 views

CVE-2024-4227

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...

7.5CVSS7.2AI score
Exploits0References2
NVD
NVD
added 2025/01/15 8:15 a.m.9 views

CVE-2024-4227

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...

7.5CVSS0.00693EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/15 8:0 a.m.20 views

CVE-2024-4227 gSOAP: Vulnerable to specially crafted unencrypted SDC messages

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...

7.5CVSS0.00693EPSS
Exploits0References2
CVE
CVE
added 2025/01/15 8:0 a.m.95 views

CVE-2024-4227

CVE-2024-4227 affects Genivia gSOAP. A specific configuration allows an unauthenticated remote attacker to cause high CPU load by forcing the XML parser to process duplicate ID attributes, leading to a DoS. The vulnerability is tied to the gSOAP XML parsing behavior; impact is denial of service w...

7.5CVSS7.5AI score0.00693EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/01/15 8:0 a.m.5 views

CVE-2024-4227

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a high CPU load when forcing to parse an XML having duplicate ID attributes which can lead to a DoS...

7.5CVSS7.4AI score0.00693EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.6 views

PT-2025-2635 · Genivia · Gsoap

Name of the Vulnerable Software and Affected Versions: Genivia gSOAP affected versions not specified Description: The issue allows an unauthenticated remote attacker to generate a high CPU load by forcing the system to parse an XML with duplicate ID attributes, potentially leading to a Denial of...

7.8CVSS7.7AI score0.00693EPSS
Exploits0References12
NVD
NVD
added 2025/01/06 5:15 p.m.13 views

CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS0.00438EPSS
Exploits1References2
OSV
OSV
added 2025/01/06 4:41 p.m.9 views

CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS6.5AI score0.00438EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/06 4:41 p.m.10 views

CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS6.9AI score0.00438EPSS
Exploits1References1
CVE
CVE
added 2025/01/06 4:41 p.m.98 views

CVE-2023-6604

CVE-2023-6604 affects FFmpeg and is described across multiple connected sources as a flaw where demuxing arbitrary data as XBIN-formatted data can cause unexpected CPU load or storage consumption, leading to degraded performance or DoS. The Debian LTS advisory (DLA-4241-1) and related Nessus entr...

5.3CVSS5.3AI score0.00438EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/01/06 4:41 p.m.23 views

CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS0.00438EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/01/06 4:41 p.m.9 views

CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS6AI score0.00438EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/01/06 12:0 a.m.5 views

PT-2025-1563 · FFmpeg +1 · Ffmpeg +1

Name of the Vulnerable Software and Affected Versions: FFmpeg affected versions not specified Description: A flaw was found in FFmpeg, allowing unexpected additional CPU load and storage consumption. This can lead to degraded performance or denial of service via the demuxing of arbitrary data as...

7.2CVSS6.2AI score0.00438EPSS
Exploits3References18
Tenable Nessus
Tenable Nessus
added 2025/01/06 12:0 a.m.38 views

RHEL 6 : bind and bind-dyndb-ldap (RHSA-2025:0039)

"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0039 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...

7.5CVSS7AI score0.99995EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/12/19 12:0 a.m.4 views

PT-2024-36737 · Altair · Altair

Name of the Vulnerable Software and Affected Versions: Altair versions prior to v12.24Q4.1 Description: The issue is related to a lack of validation and authentication in the image proxy for compressing and resizing remote files, which could allow attacks affecting availability. This could result...

8.6CVSS7.5AI score0.00579EPSS
Exploits0References9
Rows per page
Query Builder