Lucene search
K

35 matches found

UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.10 views

CVE-2026-46020

mm/damon/core: validate damosquotagoal-nid for nodememused,freebp...

5.8AI score0.00124EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.10 views

CVE-2026-46067

mm/damon/core: validate damosquotagoal-nid for nodememcgused,freebp...

5.8AI score0.00117EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/04 2:31 p.m.5 views

svgo: SVGO: Denial of Service via XML entity expansion

A flaw was found in SVGO, an SVG Scalable Vector Graphics Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service DoS by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node....

7.5CVSS7.2AI score0.00612EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31542

In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Handle deconfigured sockets When a socket is deconfigured, it's mapped to SOCKEMPTY 0xffff. This causes a panic while allocating UV hub info structures. Fix this by using NUMANONODE, allowing UV hub info structur...

5.5CVSS5.4AI score0.00122EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/02/17 9:33 a.m.5 views

nodejs: Nodejs uninitialized memory exposure

A memory exposure flaw has been discovered in Node.js. A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted, when using the vm module with the timeout option. Under specific timing conditions, buffers allocated with Buffer.alloc and other...

7.1CVSS5.8AI score0.03493EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/02/07 12:24 a.m.14 views

SUSE CVE-2026-24514

A security issue was discovered in ingress-nginx where the validating admission controller feature is subject to a denial of service condition. By sending large requests to the validating admission controller, an attacker can cause memory consumption, which may result in the ingress-nginx...

6.5CVSS5.4AI score0.0046EPSS
Exploits1References3
OSV
OSV
added 2026/02/04 12:30 a.m.5 views

GHSA-2PF9-VR92-6H3V ingress-nginx vulnerable to Allocation of Resources Without Limits or Throttling

A security issue was discovered in ingress-nginx where the validating admission controller feature is subject to a denial of service condition. By sending large requests to the validating admission controller, an attacker can cause memory consumption, which may result in the ingress-nginx...

6.5CVSS5.5AI score0.0046EPSS
Exploits1References3
NVD
NVD
added 2026/02/03 11:16 p.m.10 views

CVE-2026-24514

A security issue was discovered in ingress-nginx where the validating admission controller feature is subject to a denial of service condition. By sending large requests to the validating admission controller, an attacker can cause memory consumption, which may result in the ingress-nginx...

6.5CVSS0.0046EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/02/03 7:41 p.m.59 views

@isaacs/brace-expansion has Uncontrolled Resource Consumption

Summary @isaacs/brace-expansion is vulnerable to a Denial of Service DoS issue caused by unbounded brace range expansion. When an attacker provides a pattern containing repeated numeric brace ranges, the library attempts to eagerly generate every possible combination synchronously. Because the...

9.2CVSS5.5AI score0.00481EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/12/09 12:0 a.m.6 views

CVE-2022-50639 io-wq: Fix memory leak in worker creation

In the Linux kernel, the following vulnerability has been resolved: io-wq: Fix memory leak in worker creation If the CPU mask allocation for a node fails, then the memory allocated for the 'iowqe' struct of the current node doesn't get freed on the error handling path, since it has not yet been...

6.3AI score0.00166EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in node-memory-stream (npm)

The package node-memory-stream was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-27632 Malicious code in node-memory-stream (npm)

The package node-memory-stream was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:53 p.m.8 views

CVE-2021-35041

The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decoded by the node correctly. As a result, the node may consume the memory...

7.5CVSS6.8AI score0.0125EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.11 views

SUSE CVE-2021-3506

An out-of-bounds OOB memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The...

7.1CVSS6.3AI score0.00366EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/06/17 5:40 a.m.4 views

cri-o: memory exhaustion on the node when access to the kube api

A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The ExecSync request runs commands in a container and logs the output of the command. This output is then read by CRI-O after command execution, and it is read in a...

7.8CVSS6.6AI score0.02827EPSS
Exploits1References5
Rows per page
Query Builder