53 matches found
GHSA-6GM8-3G4H-W82M Ella Core Panics Upon NGAP handover failure
Summary Ella Core panics when processing a NGAP handover failure message. Impact If an attacker can force a gNodeB to send NGAP handover failure messages to Ella Core, the process will crash, thereby disrupting service for all connected subscribers. Fix Improve guards in NGAP handover handlers...
CVE-2026-32319
CVE-2026-32319 affects Ella Core (5G private-net core). The issue arises when processing a malformed integrity-protected NGAP/NAS message shorter than 7 bytes, which can cause the Ella Core process to panic and crash, enabling unauthenticated DoS and service disruption for all connected subscribe...
GHSA-84PP-QR92-95C9 Liferay Portal users can upload an unlimited amount of files
Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allow users to upload an unlimited amount of files through the...
The vulnerability of the net/mlx5 component in the Linux operating system, which allows a hacker to cause a service failure.
The vulnerability of the net/mlx5 component in the Linux operating system is related to deficiencies in handling exceptional states. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the drm/xe component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the drm/xe component in the Linux operating system is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability in the driver/net/ethernet/marvell/octeontx2/nic/otx2_dmac_flt.c component of the Linux operating system allows a hacker to cause a service failure.
The vulnerability in the driver/net/ethernet/marvell/octeontx2/nic/otx2dmacflt.c component of the Linux operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the driver/net/ethernet/renesas/rswitch.c component of the Linux operating system allows a hacker to cause a service failure.
The vulnerability in the drivers/net/ethernet/renesas/rswitch.c component of the Linux operating system is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
Vulnerability of the mt76_connac_mcu_uni_add_dev() function in the drivers/net/wireless/mediatek/mt76/mt76_connac_mcu.c module – A driver for supporting wireless connection adapters in the Linux operating system, which allows a hacker to cause a service failure
Vulnerability of the mt76connacmcuuniadddev function in the drivers/net/wireless/mediatek/mt76/mt76connacmcu.c module – The Linux kernel’s wireless adapter support driver has a vulnerability due to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause system...
The vulnerability of the phpseclib cryptographic protocol library, related to incorrect input validation, allows attackers to trigger a service failure.
The vulnerability of the phpseclib cryptographic protocol library is related to insufficient checks on the data entered by users. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the NFSD component in the Linux operating system’s kernel allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the NFSD component in the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...
The vulnerabilities of the iommu/vt-d components of the Linux operating system’s kernel, which allow a hacker to cause a service failure
The vulnerability of the iommu/vt-d components of the Linux operating system’s kernel is related to improper validation of input data in the function domaincontextclearonecb within drivers/iommu/intel/iommu.c. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the __cxl_dpa_to_region() function in the drivers/cxl/core/region.c file of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the cxldpatoregion function in the drivers/cxl/core/region.c file of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2022-32204
There is an improper input verification vulnerability in Huawei printer product. Successful exploitation of this vulnerability may cause service abnormal. Vulnerability ID: HWPSIRT-2022-87185 This vulnerability has been assigned a Common Vulnerabilities and Exposures CVE ID: CVE-2022-32204...
The vulnerability of the LZ4 data compression algorithm, which involves errors in number processing, allows a hacker to cause a service failure.
The vulnerability of the lossless LZ4 data compression algorithm is related to errors in number processing. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
The vulnerability of the Network Address Translation (NAT) technology implementation in Windows operating systems allows a hacker to induce a service failure.
The vulnerability of the Network Address Translation NAT technology in Windows operating systems is related to pointer arithmetic errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions from a remote location...
The vulnerability of the BIND DNS server, related to the unlimited distribution of resources, allows attackers to cause service failures.
The vulnerability of the BIND DNS server is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service failures when there are a large number of resource records for the same domain name...
The vulnerability of the opremap() function in the Nouveau driver for NVIDIA’s Linux operating system allows a hacker to induce a service failure.
The vulnerability of the opremap function in the drivers/gpu/drm/nouveau/nouveauuvmm.c file of the Nouveau driver for the NVIDIA kernel of the Linux operating system is related to incorrect calculations of the boundaries of the movable buffer. Exploiting this vulnerability could allow an attacker...
The vulnerability of the qla2x00_mem_alloc() function in the drivers/scsi/qla2xxx/qla_os.c module of the QLogic QLA2XXX kernel driver for the Linux operating system allows a hacker to cause service failure or exert other adverse effects.
The vulnerability of the qla2x00memalloc function in the drivers/scsi/qla2xxx/qlaos.c file of the QLogic QLA2XXX kernel in the Linux operating system is related to the reallocation of previously released memory. Exploiting this vulnerability could allow an attacker to cause a service failure or...
The vulnerability of the jackson-databind library, related to unlimited resource distribution, allows attackers to cause service failures.
The vulnerability of the jackson-databind library is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the data modem in the microprogramming software of Qualcomm-internal chips allows a perpetrator to cause a service failure.
The vulnerability of the data modem component of Qualcomm’s embedded software is related to incorrect cleaning of the TLB buffer during message processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...