Lucene search
K

20 matches found

CVE
CVE
added 2026/06/09 5:34 p.m.21 views

CVE-2026-28237

AMD uProf exposes an issue described as unrestricted resource allocation that can be exploited to exhaust system resources, potentially impacting availability. The reports identify the affected component as AMD uProf, with local attack vector and low attack complexity, resulting in high impact on...

6.8CVSS5.4AI score0.00098EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/09 5:34 p.m.40 views

CVE-2026-28237

Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability...

6.8CVSS0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/08/19 2:46 p.m.14 views

CVE-2024-42291

In the Linux kernel, the following vulnerability has been resolved: ice: Add a per-VF limit on number of FDIR filters While the iavf driver adds a s/w limit 128 on the number of FDIR filters that the VF can request, a malicious VF driver can request more than that and exhaust the resources for...

4.4CVSS7AI score0.00226EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 6 : openstack-nova (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openstack-nova/glance/cinder: Malicious image may exhaust resources CVE-2015-5162 - Rejected reason: DO N...

7.5CVSS7.3AI score0.03062EPSS
Exploits1References2
OSV
OSV
added 2024/03/06 11:20 a.m.17 views

BIT-GITLAB-2021-22181

A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 allows an attacker to create a recursive pipeline relationship and exhaust resources...

7.7CVSS6.4AI score0.01058EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:17 a.m.30 views

BIT-GITLAB-2021-39939

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to...

6.5CVSS6AI score0.00907EPSS
Exploits0References3
OSV
OSV
added 2024/02/20 9:15 a.m.6 views

CVE-2024-25606

XXE vulnerability in Liferay Portal 7.2.0 through 7.4.3.7, and older unsupported versions, and Liferay DXP 7.4 before update 4, 7.3 before update 12, 7.2 before fix pack 20, and older unsupported versions allows attackers with permission to deploy widgets/portlets/extensions to obtain sensitive...

8.7CVSS5.8AI score0.00497EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/27 5:22 p.m.25 views

CVE-2023-20268 Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability

A vulnerability in the packet processing functionality of Cisco access point AP software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. An...

4.7CVSS5.1AI score0.00236EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/11 12:0 a.m.6 views

SAP NetWeaver AS 资源管理错误漏洞

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also the basic platform for SAP software. A resource management error vulnerability exists in SAP NetWeaver AS for ABAP Business Server Pages, which arises from uncontrolled resource...

6.5CVSS6.5AI score0.00572EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 12:15 p.m.22 views

CVE-2022-30551

OPC UA Legacy Java Stack 2022-04-01 allows a remote attacker to cause a server to stop processing messages by sending crafted messages that exhaust available resources...

7.5CVSS0.0216EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/04/15 2:16 p.m.10 views

CVE-2022-20692 Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability

A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...

7.7CVSS6.8AI score0.01104EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/12/13 3:48 p.m.16 views

CVE-2021-39939

Removed by vendor...

6.5CVSS6.5AI score0.00907EPSS
Exploits0
CNNVD
CNNVD
added 2021/12/13 12:0 a.m.5 views

GitLab 资源管理错误漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD continuous integration and continuous delivery, and other features. A security vulnerability exists in GitLab where an attacker used a specially...

6.5CVSS6.6AI score0.00907EPSS
Exploits0References4
CNVD
CNVD
added 2021/12/01 12:0 a.m.17 views

Business-Dna Solution GmbH TopEase Input Validation Error Vulnerability

Business-Dna Solution GmbH TopEase is a "transformation risk" solution from the Swiss company Business-Dna Solution GmbH. Business-Dna Solution GmbH TopEase is vulnerable to an input validation error that could be exploited to insert arbitrarily long strings and eventually exhaust the underlying...

6.5CVSS2AI score0.01065EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/10/27 7:15 p.m.29 views

CVE-2021-40114

Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper memory resource manageme...

7.8CVSS6.6AI score0.02367EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/28 12:0 a.m.5 views

VMware Spring Security 安全漏洞

VMware Spring Security is a suite of security frameworks from VMware that provide illustrative security protections for Spring-based applications. A security vulnerability exists in Spring Security that allows an attacker to send multiple requests to initiate authorization requests granted by the...

7.5CVSS6.5AI score0.06001EPSS
Exploits0References15
OSV
OSV
added 2021/06/11 4:15 p.m.17 views

CVE-2021-22181

A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 allows an attacker to create a recursive pipeline relationship and exhaust resources...

6.5CVSS6.3AI score0.01058EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/10/02 2:29 p.m.3 views

HTTP/2: request for large response leads to denial of service

A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's...

7.8CVSS7.2AI score0.27004EPSS
Exploits0References7
CNVD
CNVD
added 2015/08/12 12:0 a.m.2 views

OpenStack Glance Denial of Service Vulnerability (CNVD-2015-05221)

OpenStack is a cloud platform management program developed by the National Aeronautics and Space Administration in collaboration with Rackspace, Inc. OpenStack Image Registry and Delivery Service Glance is a project that stores, queries, and retrieves virtual machine images. A denial-of-service...

4CVSS6.8AI score0.01307EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2010/07/01 12:0 a.m.29 views

Mozilla Products 'IFRAME' Denial Of Service vulnerability (Windows)

The host is installed with Mozilla Firefox/Seamonkey and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsiframedosvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products 'IFRAME' Denial Of Service vulnerability Windows Authors: Antu Sanadi...

5CVSS6.6AI score0.0205EPSS
Exploits1References2
Rows per page
Query Builder