Lucene search
K

319 matches found

CVE
CVE
added 6 days ago18 views

CVE-2026-55206

CVE-2026-55206 (py7zr) affects the Python-based 7z library py7zr. The root cause is an O(n^2) cumulative-sum implementation in PackInfo._read() (archiveinfo.py) that parses attacker-controlled numstreams from archive headers. This causes excessive CPU usage during SevenZipFile.init() before extra...

8.7CVSS5.9AI score0.00321EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/05 12:30 a.m.45 views

CVE-2026-11312 bytedance InfiniStore KV Map infinistore.h purge_kv_map algorithmic complexity

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purgekvmap in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The...

4.8CVSS0.00112EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/05 12:0 a.m.10 views

InfiniStore 安全漏洞

InfiniStore is a high-performance Key-Value cache storage tool open-sourced by Bytedance Inc. Versions of InfiniStore 0.2.33 and earlier contain security vulnerabilities, which stem from an algorithmic complexity issue in the purgekvmap function of the KV Map Handler component’s src/infinistore.h...

4.8CVSS4.5AI score0.00112EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2026/05/25 12:0 a.m.4 views

The vulnerability of the minimatch library on the Node.js software platform, which allows a hacker to cause a service failure.

The vulnerability of the minimatch library on the Node.js software platform is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS5.8AI score0.00517EPSS
Exploits1References7Affected Software28
Redos
Redos
added 2026/05/24 12:0 a.m.28 views

ROS-20260524-73-0050

A vulnerability in the MultiPartParser function of the Django web application software platform is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS5.8AI score0.00879EPSS
Exploits1
Snyk
Snyk
added 2026/05/22 5:42 p.m.9 views

Inefficient Algorithmic Complexity

Overview github.com/golang/net/html is a package that implements an HTML5-compliant tokenizer and parser. Affected versions of this package are vulnerable to Inefficient Algorithmic Complexity in parse.go, when checking attributes iteratively. An attacker can cause excessive CPU consumption by...

7.5CVSS5.8AI score0.00248EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/20 8:47 p.m.10 views

org.apache.neethi: Apache Neethi: Denial of Service via algorithmic complexity in policy normalization

A flaw was found in Apache Neethi. A remote attacker can exploit this vulnerability by providing specially crafted WS-Policy documents. This triggers an algorithmic complexity issue during policy normalization, leading to an exponential expansion of policy alternatives. This unbounded memory...

7.5CVSS5.7AI score0.00711EPSS
Exploits0References5
Redos
Redos
added 2026/05/12 12:0 a.m.9 views

ROS-20260512-73-0003

Vulnerability in python-PyPDF2 related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.9CVSS5.8AI score0.00399EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/11 6:24 p.m.12 views

Security Bulletin: MongoDB Enterprised Advanced affected by: Inefficient Algorithmic Complexity (CVE-2026-27903, CVE-2026-27904)

Summary There are vulnerabilities in minimatch-9.0.1.tgz used in MongoDB Enterprised Advanced for IBM, involving CVE-2026-27903, CVE-2026-27904. The vulnerability has/vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2026-27903 DESCRIPTION: minimatch is a minimal matching utili...

7.5CVSS7.1AI score0.00517EPSS
Exploits2Affected Software1
Redos
Redos
added 2026/05/08 12:0 a.m.13 views

ROS-20260508-73-0013

Vulnerability in nodejs-minimatch related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.1AI score0.00517EPSS
Exploits1
Redos
Redos
added 2026/05/05 12:0 a.m.8 views

ROS-20260505-73-0029

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.8 views

ROS-20260505-73-0027

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.7 views

ROS-20260505-73-0028

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.9 views

ROS-20260505-73-0026

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.7 views

ROS-20260505-73-0025

A vulnerability in the appendChild and clearidcache functions of the Python programming language interpreter CPython is related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.3CVSS7.1AI score0.00708EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/05/04 12:0 a.m.4 views

The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system allows a perpetrator to trigger a service failure.

The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS5.8AI score0.00267EPSS
Exploits0References3Affected Software2
Microsoft CVE
Microsoft CVE
added 2026/04/17 8:1 a.m.7 views

jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed

...

7.5CVSS5.7AI score0.00366EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/16 7:22 p.m.7 views

CVE-2025-67841

Nordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue...

7.5CVSS5.7AI score0.00278EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/15 6:31 p.m.4 views

EUVD-2025-209487

Nordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue...

5.7AI score0.00278EPSS
Exploits0References3
NVD
NVD
added 2026/04/15 4:16 p.m.5 views

CVE-2025-67841

Nordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue...

7.5CVSS0.00278EPSS
Exploits0References2
Rows per page
Query Builder