29 matches found
UBUNTU-CVE-2026-48913
Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...
CVE-2026-48913
This CVE (CVE-2026-48913) concerns Apache HTTP Server’s mod_http2 component. The reported issue is a Use After Free vulnerability when file handles are exhausted, affecting Apache HTTP Server versions 2.4.55–2.4.67. The description and connected sources consistently cite memory- or resource-relat...
CVE-2026-48913
Use After Free vulnerability in Apache HTTP Server module modhttp2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67...
Apache HTTP Server 资源管理错误漏洞
The Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. The Apache HTTP Server has a memory corruption vulnerability. Attackers can exploit this...
SUSE SLES15: erlang26 / erlang26-debugger / erlang26-debugger-src / etc (SUSE-SU-2025:4035-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4035-1 advisory. - CVE-2025-48041: Fixed exhaustion of file handles in ssh bsc1249473 Tenable has extracted the preceding description block...
Security update for erlang26
This update for erlang26 fixes the following issues: CVE-2025-48041: Fixed exhaustion of file handles in ssh bsc1249473 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...
SUSE-SU-2025:4035-1 Security update for erlang26
This update for erlang26 fixes the following issues: - CVE-2025-48041: Fixed exhaustion of file handles in ssh bsc1249473...
SUSE: Security Advisory (SUSE-SU-2025:3807-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2025:3807-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: erlang / erlang-debugger / erlang-debugger-src / erlang-dialyzer / etc (SUSE-SU-2025:3807-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:3807-1 advisory. - CVE-2025-48041: fixed erlang exhaustion of file handles in SSH bsc1249473 Tenable has extracted the preceding description...
Security update for erlang
This update for erlang fixes the following issues: CVE-2025-48041: fixed erlang exhaustion of file handles in SSH bsc1249473 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...
EUVD-2021-0580
Malware in sbrugna...
CVE-2025-48041 SSH_FXP_OPENDIR may Lead to Exhaustion of File Handles
Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh sshsftp modules allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/sshsftpd.erl. This issue affects OTP from OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5....
CVE-2025-48041 SSH_FXP_OPENDIR may Lead to Exhaustion of File Handles
Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh sshsftp modules allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/sshsftpd.erl. This issue affects OTP from OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5....
CVE-2025-48041
CVE-2025-48041 is an Erlang/OTP issue in the SSH sftp path (ssh_sftpd.erl) causing Allocation of Resources Without Limits or Throttling. Affected are OTP forms up to 28.0.3 (and related SSH from 3.0.1 to 5.3.3, 5.2.11.3, 5.1.4.12). The vulnerability enables excessive resource allocation and relat...
CVE-2021-21293
blaze is a Scala library for building asynchronous pipelines, with a focus on network IO. All servers running blaze-core before version 0.14.15 are affected by a vulnerability in which unbounded connection acceptance leads to file handle exhaustion. Blaze, accepts connections unconditionally on a...
CVE-2022-43855
IBM SPSS Statistics 26.0, 27.0.1, and 28.0 IO Module could allow a local user to create multiple files that could exhaust the file handles capacity and cause a denial of service...
CVE-2022-43855
CVE-2022-43855 affects IBM SPSS Statistics IO Module (versions 26.0, 27.0.1, 28.0). A local user can create multiple files, leading to file-handle exhaustion and denial of service. IBM’s bulletin notes the vulnerability is associated with resource management errors (CWE-399) and confirms the expo...
IBM Spss Statistics 安全漏洞
IBM SPSS Statistics is a software package from International Business Machines IBM. It is used for interactive or batch statistical analysis. A resource management error vulnerability exists in IBM SPSS Statistics, which can be exploited by an attacker to create multiple files, exhaust file handl...
Denial Of Service (DoS)
blaze-core is vulnerable to denial of service. The acceptance of unbounded connection results in file handle exhaustion and leads to a denial of service condition...