CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

Snyk•added 2026/05/04 11:24 p.m.•3 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the TLS handshake process. An attacker can cause worker connection handling to block by opening a connection to the authentication listener and delaying or withholding the client...

7.5CVSS5.8AI score0.00031EPSS

Exploits0References2

RedhatCVE•added 2026/02/12 1:43 p.m.•3 views

CVE-2025-57708

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We hav...

6.5CVSS5.6AI score0.00051EPSS

Exploits0References1

Cvelist•added 2026/02/11 12:18 p.m.•20 views

CVE-2025-54155 File Station 5

An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 5. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of...

6.9CVSS0.00046EPSS

Exploits0References1

CVE•added 2026/02/11 12:18 p.m.•9 views

CVE-2025-54161

Technical details about CVE-2025-54161 are not publicly provided in the supplied documents; monitor for updates.

6.9CVSS5.6AI score0.00147EPSS

Exploits0References1Affected Software1

CVE•added 2026/02/11 12:17 p.m.•7 views

CVE-2025-57708

CVE-2025-57708 is an allocation of resources without limits or throttling affecting Qsync Central . The root cause is resource exhaustion that can be triggered when a remote attacker gains a user account, enabling them to prevent other systems, applications, or processes from accessing the same t...

6.5CVSS5.6AI score0.00051EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/02/11 12:0 a.m.•1 views

QNAP Qsync Central 安全漏洞

QNAP Qsync Central is a cloud-based file synchronization service provided by QNAP Technology Co., Ltd. Versions prior to 5.0.0.4 of QNAP Qsync Central contain security vulnerabilities. These vulnerabilities stem from unlimited resource allocation or throttling, which may lead to blocked resource...

6.9CVSS5.8AI score0.00046EPSS

Exploits0References2

Vulnrichment•added 2026/01/02 2:52 p.m.•2 views

CVE-2025-47208 QTS, QuTS hero

An allocation of resources without limits or throttling vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same...

7.1CVSS6.5AI score0.00139EPSS

Exploits0References1

RedhatCVE•added 2025/11/08 3:57 p.m.•5 views

CVE-2025-53411

5.1CVSS6.9AI score0.00151EPSS

Exploits0References1

OSV•added 2025/11/07 4:15 p.m.•1 views

CVE-2025-53413

An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We ha...

6.5CVSS5.8AI score0.00163EPSS

Exploits0References1

Cvelist•added 2025/11/07 3:14 p.m.•2 views

CVE-2025-53409 File Station 5

7.1CVSS0.00163EPSS

Exploits0References1

CVE•added 2025/11/07 3:14 p.m.•6 views

CVE-2025-53409

CVE-2025-53409 affects QNAP File Station 5 on NAS devices. The vulnerability is an unlimited/unthrottled resource allocation flaw that, if a remote attacker gains a user account, can cause denial of access for other systems/applications/processes to the same resources. Public sources confirm the ...

7.1CVSS6.5AI score0.00163EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/10/03 6:8 p.m.•4 views

CVE-2025-44006 Qsync Central

7.1CVSS0.00156EPSS

Exploits0References1

EUVD•added 2025/10/03 6:8 p.m.•1 views

EUVD-2025-32322

7.1CVSS6.4AI score0.00156EPSS

Exploits0References2

Positive Technologies•added 2025/08/29 12:0 a.m.•2 views

PT-2025-35270

Name of the Vulnerable Software and Affected Versions: Qsync Central versions prior to 4.5.0.7 Description: An allocation of resources without limits or throttling issue exists in Qsync Central. A remote attacker gaining a user account can exploit this to prevent other systems, applications, or...

7.1CVSS6.4AI score0.00208EPSS

Exploits0References4

NVD•added 2025/07/10 3:15 a.m.•3 views

CVE-2025-44003

Missing Release of Resource after Effective Lifetime CWE-772 in the Gallagher T-Series Reader allows an attacker with physical access to the reader to perform a limited denial of service when 125 kHz Card Technology is enabled. This issue affects T-Series Readers: 9.20 prior to vCR9.20.250213a...

4.3CVSS0.00127EPSS

Exploits0References1

OSV•added 2025/06/06 4:15 p.m.•1 views

CVE-2025-29872

7.5CVSS5.8AI score0.00389EPSS

Exploits0References1

RedhatCVE•added 2025/06/01 4:35 a.m.•6 views

CVE-2025-48381

Computer Vision Annotation Tool CVAT is an interactive video and image annotation tool for computer vision. In versions starting from 2.4.0 to before 2.38.0, an authenticated CVAT user may be able to retrieve the IDs and names of all tasks, projects, labels, and the IDs of all jobs and quality...

5.3CVSS6.3AI score0.0022EPSS

Exploits0References1

NVD•added 2025/05/30 4:15 a.m.•10 views

CVE-2025-48381

5.3CVSS0.0022EPSS

Exploits0References2

Cvelist•added 2025/05/30 3:38 a.m.•16 views

CVE-2025-48381 CVAT has information disclosure via browsable API

5.3CVSS0.0022EPSS

Exploits0References2

OSV•added 2025/05/30 3:38 a.m.•3 views

CVE-2025-48381 CVAT has information disclosure via browsable API