Lucene search
K

227 matches found

Cvelist
Cvelist
added 2025/09/11 8:13 a.m.12 views

CVE-2025-48039 Unverified Paths can Cause Excessive Use of System Resources

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh sshsftp modules allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/sshsftpd.erl. This issue affects OTP from OTP 17.0 until OTP 28.0.3, OTP 27.3.4...

5.3CVSS0.00359EPSS
Exploits0References7
CVE
CVE
added 2025/09/11 8:13 a.m.29 views

CVE-2025-48039

CVE-2025-48039 affects Erlang OTP ssh_sftp module (lib/ssh/src/ssh_sftpd.erl) and can cause excessive resource consumption due to unverified paths from authenticated SFTP users. Public disclosures link multiple Linux distro advisories updating Erlang (e.g., openSUSE/SUSE SUSE-SU-2026:20043-1, SUS...

5.3CVSS5.4AI score0.00359EPSS
Exploits0References7
CVE
CVE
added 2025/09/11 8:13 a.m.30 views

CVE-2025-48038

CVE-2025-48038 affects Erlang OTP ssh (ssh_sftpd) with Allocation of Resources Without Limits or Throttling, causing excessive resource consumption. The issue is present across multiple OTP/erlang SSH versions (as detailed in the CVE entry) and is being addressed through vendor advisories and sec...

5.3CVSS5.4AI score0.00359EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/09/10 12:0 a.m.3 views

Cisco IOS XR 资源管理错误漏洞

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. Cisco IOS XR suffers from a Resource Management Error vulnerability that arises from uncontrolled resource consumption by an application, which can be exploited by an attacker to...

7.4CVSS6.6AI score0.00589EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 10:15 p.m.5 views

CVE-2025-49460

Uncontrolled resource consumption in certain Zoom Workplace Clients may allow an unauthenticated user to conduct a denial of service via network access...

7.5CVSS0.00254EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/04 9:53 a.m.2 views

Excessive resource consumption in mime/multipart

...

7.5CVSS7AI score0.01231EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.4 views

Akinsoft MyRezzta 安全漏洞

Aiseesoft is a technology company specializing in software development. Akinsoft MyRezzta has a security vulnerability that stems from improper execution of behavioral workflows and uncontrolled consumption of resources, no details of the vulnerability are provided at this time...

6.3CVSS7AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/31 6:11 p.m.4 views

CVE-2025-29898

An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Centra...

6.5CVSS6.9AI score0.00419EPSS
Exploits0References1
CVE
CVE
added 2025/08/29 5:15 p.m.19 views

CVE-2025-29898

CVE-2025-29898 affects QNAP Qsync Central. Affected component: Qsync Central software. Vulnerability: uncontrolled resource consumption that enables a remote attacker who has a user account to trigger a denial-of-service (DoS). Impact per reported metrics includes high availability impact with ne...

6.5CVSS6.3AI score0.00419EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/27 12:0 a.m.2 views

The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to trigger a service failure.

The vulnerability of the NVIDIA Virtual GPU Manager driver relates to an uncontrolled resource consumption. Exploiting this vulnerability can allow a hacker to cause service failures...

5.5CVSS5.8AI score0.00145EPSS
Exploits0References4Affected Software3
RedhatCVE
RedhatCVE
added 2025/08/24 9:29 a.m.8 views

CVE-2025-9341

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

6.2CVSS6.8AI score0.00149EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/08/20 3:40 p.m.3 views

tomcat: Apache Tomcat denial of service

A denial of service flaw was found in Apache Tomcat. An uncontrolled resource consumption vulnerability, where an HTTP/2 client fails to acknowledge the initial settings frame that reduces the maximum permitted concurrent streams, could result in a denial of service...

7.5CVSS7.1AI score0.01898EPSS
Exploits0References5
CNVD
CNVD
added 2025/08/20 12:0 a.m.3 views

Intel Tiber Edge Platform Edge Orchestrator Denial of Service Vulnerability (CNVD-2025-19834)

Intel Tiber Edge Platform Edge Orchestrator is an edge computing platform from Intel designed to simplify the edge application development and deployment process by supporting modular tools to build and run edge applications. Intel Tiber Edge Platform Edge Orchestrator suffers from a denial of...

5.1CVSS6.8AI score0.0019EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/14 6:24 p.m.3 views

CVE-2025-26863

Uncontrolled resource consumption in the Linux kernel-mode driver for some IntelR 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable denial of service...

4.8CVSS7AI score0.00123EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 10:15 a.m.13 views

UBUNTU-CVE-2025-8916

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All API modules, Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All API modules allows Excessiv...

6.3CVSS6.7AI score0.0043EPSS
Exploits0References4
CVE
CVE
added 2025/08/12 5:10 p.m.34 views

CVE-2025-53722

CVE-2025-53722 affects Windows Remote Desktop Services. Described as Denial-of-Service via uncontrolled resource consumption, exploitable over the network with no user interaction and no privileges required. CVSS v3.1 base score 7.5 (Network, Low attack complexity, No privileges, No user interact...

7.5CVSS7.1AI score0.17335EPSS
Exploits0References1Affected Software15
Cvelist
Cvelist
added 2025/08/12 4:59 p.m.6 views

CVE-2025-26697

Uncontrolled resource consumption in the Linux kernel-mode driver for some IntelR 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable denial of service...

4.8CVSS0.00123EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.5 views

The vulnerability of the JPEG XL decoder in the Libjxl library, allowing attackers to trigger a service denial

The vulnerability of the JPEG XL decoder in the Libjxl library is related to an uncontrolled resource consumption due to buffer overflow on the stack. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

6.3CVSS6.9AI score0.00607EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/08/01 12:0 a.m.6 views

The vulnerability of the SecurityAgent component in macOS operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the SecurityAgent component in macOS operating systems is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

6.2CVSS5.5AI score0.00743EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/18 12:0 a.m.7 views

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

6.8CVSS7.2AI score0.00485EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder