CVE-2026-8879

CVE-2026-8879 affects Securly Chrome Extension v3.0.7. The vulnerability stems from dynamically registering content13.min.js as a content script at runtime via chrome.scripting.registerContentScripts(), a script not declared in manifest.json that bypasses the Chrome Web Store static security revi...

CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

CVE-2026-35058

server ASSERT on receiving a suitably malformed packet with a valid tls-crypt-v2 key...

CVE-2019-18242

In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, frequent and multiple requests for short-term use may cause the web server to fail...

RHEL 8 : kernel (RHSA-2025:22388)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22388 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: handle getclientlocked...

EUVD-2018-4099

Malware in sbrugna...

EUVD-2019-8040

Malware in sbrugna...

A vulnerability exists in the CCH_release function of the cch.cpp module of the “Red Database” database management system, which allows a hacker to cause a service failure in the server.

The vulnerability in the CCHrelease function of the cch.cpp module of the “Red Database” database management system is related to the release of page cache. Exploiting this vulnerability could allow a malicious actor to cause a service failure in the server...

CVE-2025-48942 vLLM DOS: Remotely kill vllm over http with invalid JSON schema

vLLM is an inference and serving engine for large language models LLMs. In versions 0.8.0 up to but excluding 0.9.0, hitting the /v1/completions API with a invalid jsonschema as a Guided Param kills the vllm server. This vulnerability is similar GHSA-9hcf-v7m4-6m2j/CVE-2025-48943, but for regex...

vLLM DOS: Remotely kill vllm over http with invalid JSON schema

Summary Hitting the /v1/completions API with a invalid jsonschema as a Guided Param will kill the vllm server Details The following API call venv derekh@ip-172-31-15-108 $ curl -s http://localhost:8000/v1/completions -H "Content-Type: application/json" -d '"model":...

CVE-2023-5403

Server hostname translation to IP address manipulation which could lead to an attacker performing remote code execution or causing a failure. See Honeywell Security Notification for recommendations on upgrading and versioning...

CVE-2025-27911

An issue was discovered in Datalust Seq before 2024.3.13545. Expansion of identifiers in message templates can be used to bypass the system "Event body limit bytes" setting, leading to increased resource consumption. With sufficiently large events, there can be disk space exhaustion if saved to...

The vulnerability of the accept_connection function (in the server.cpp module) of the “Red Database” database management system allows a attacker to cause a service failure in the server.

The vulnerability of the acceptconnection function in the server.cpp module of the “Red Database” database management system lies in the fact that during user authentication, memory may be corrupted, and this data is then rewritten by another thread. Exploiting this vulnerability could allow an...

The vulnerability of the ConditionalStream::ConditionalStream class (in the ConditionalStream.cpp module) of the “Red Database” database management system allows a attacker to cause a service failure on the server.

The vulnerability of the ConditionalStream::ConditionalStream class in the ConditionalStream.cpp module of the “Red Database” database management system is related to the use of the BETWEEN operator in the WHERE clause during query preparation. Exploiting this vulnerability can allow an attacker ...

The vulnerability in the golang.org/x/crypto/ssh library for the Go programming language allows a attacker to cause SSH servers to fail.

The vulnerability of the golang.org/x/crypto/ssh library in the Go programming language is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause SSH servers to fail...

Citrix FAS Server registration failure with Citrix cloud

FAS Server fails to register with the Citrix Cloud. Exception: System.Net.Http.HttpRequestException: An error occurred while sending the request. --- System.Net.WebException: The underlying connection was closed: An unexpected error occurred on a send. --- System.IO.IOException: Unable to read da...

SUSE CVE-2018-5734

While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode instead of a FORMERR rcode. If the receiving view has the SERVFAIL cache feature enabled, this can trigger an assertion failure in badcache.c when the request doesn't contain all of the expected...

ALPINE-CVE-2022-3924

This issue can affect BIND 9 resolvers with stale-answer-enable yes; that also make use of the option stale-answer-client-timeout, configured with a value greater than zero. If the resolver receives many queries that require recursion, there will be a corresponding increase in the number of clien...

The vulnerability of the 389 Directory Server, a catalog service server, related to uncontrolled resource consumption, allows attackers to cause system failures.

The vulnerability of the 389 Directory Server catalog service server is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a malfunction in the server’s operation due to the ldapsearch sorting on the server si...

The vulnerability of Siemens SCALANCE S network gateways’ microprogramming software is related to uncontrolled resource consumption (exhaustion), which allows attackers to trigger a service failure of the web server.

The vulnerability of Siemens SCALANCE S network gateways’ microprogramming software is related to uncontrolled resource consumption exhaustion. Exploiting this vulnerability can allow a malicious actor to trigger a service failure of the web server using specially created packets sent to port...