CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: Uncontrolled Recursion in Wireshark CVE-2025-1492 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.5AI score0.0028EPSS

Exploits0References2

Vulnrichment•added 2025/10/03 2:35 p.m.•3 views

CVE-2025-10728 Uncontrolled recursion in Qt SVG module

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS6.7AI score0.00198EPSS

Exploits0References1

Cvelist•added 2025/10/03 2:35 p.m.•9 views

CVE-2025-10728 Uncontrolled recursion in Qt SVG module

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS0.00198EPSS

Exploits0References1

QT•added 2025/10/03 12:0 a.m.•15 views

Security advisory: Uncontrolled Recursion and Use-After-Free vulnerabilities in Qt SVG module impact Qt

Two vulnerabilities in Qt SVG module have been discovered. Uncontrolled recursion vulnerability has been assigned the CVE id CVE-2025-10728. Whereas Use-After-Free vulnerability has been assigned the CVE id CVE-2025-10729. Uncontrolled recursion vulnerability in Qt SVG CVE-2025-10728 Affected...

9.4CVSS7.2AI score0.00199EPSS

Exploits0

Microsoft CVE•added 2025/10/01 11:11 p.m.•4 views

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion

...

7.5CVSS7AI score0.02447EPSS

Exploits1

IBM Security Bulletins•added 2025/09/26 8:4 a.m.•11 views

Security Bulletin: A vulnerability in Apache Commons Lang may affect IBM Decision Optimization for IBM Cloud Pak for Data (CVE-2025-48924)

Summary There is a vulnerability in Apache Commons Lang used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability...

5.3CVSS6.3AI score0.02164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/09/24 3:18 a.m.•7 views

Security Bulletin: Vulnerabilities Addressed in IBM Tivoli Network Configuration Manager IP Edition (ITNCM) version 6.4.2 Fix Pack 23 (6.4.2.23)

Summary Multiple vulnerabilities were addressed in ITNCM version 6.4.2 Fix Pack 23 6.4.2.23 Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to...

8.1CVSS8.4AI score0.02164EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/09/23 7:25 a.m.•12 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Nimbus JOSE+JWT library which is vulnerable to CVE-2025-53864

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Nimbus JOSE+JWT library which is vulnerable to CVE-2025-53864. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-53864 DESCRIPTION: Connect2id Nimbu...

5.8CVSS7AI score0.00806EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/09/23 7:24 a.m.•3 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Apache Commons Lang which is vulnerable to CVE-2025-48924

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Apache Commons Lang. which is vulnerable to CVE-2025-48924. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled...

5.3CVSS7.5AI score0.02164EPSS

Exploits0Affected Software1

Veracode•added 2025/09/23 7:15 a.m.•6 views

Denial Of Service (DoS)

llamaindexcore is vulnerable to Denial of Service DoS. The vulnerability is due to uncontrolled recursion when parsing deeply nested JSON files, which allows an attacker to cause high resource consumption and potential crashes of the Python process...

8.6CVSS8.5AI score0.0026EPSS

Exploits0References4Affected Software1

RedHat Linux•added 2025/09/22 9:48 p.m.•9 views

Important: Red Hat Security Advisory: Streams for Apache Kafka 3.0.1 release and security update

Streams for Apache Kafka 3.0.1 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.2CVSS6.9AI score0.02164EPSS

Exploits1References3

RedHat Linux•added 2025/09/22 9:48 p.m.•5 views

commons-lang/commons-lang: org.apache.commons/commons-lang3: Uncontrolled Recursion vulnerability in Apache Commons Lang

An uncontrolled recursion flaw was found in the Apache Commons Lang library. The ClassUtils.getClass... method can throw a StackOverflowError on very long inputs. Since this error is typically not handled by applications and libraries, a StackOverflowError may lead to the termination of an...

5.3CVSS7.1AI score0.02164EPSS

Exploits0References5

Snyk•added 2025/09/14 10:42 p.m.•4 views

Uncontrolled Recursion

Overview express-xss-sanitizer is an Express 4.x middleware which sanitizes user input data in req.body, req.query, req.headers and req.params to prevent Cross Site Scripting XSS attack. Affected versions of this package are vulnerable to Uncontrolled Recursion via the sanitize function in...

6.9CVSS6AI score0.00419EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by