Lucene search
K

27 matches found

NVD
NVD
added 2025/09/15 5:15 p.m.5 views

CVE-2025-59328

A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...

6.5CVSS0.0059EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/15 4:26 p.m.9 views

CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data

A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...

0.0059EPSS
Exploits0References1
CVE
CVE
added 2025/09/15 4:26 p.m.35 views

CVE-2025-59328

CVE-2025-59328 describes a DoS vulnerability in the Apache Fory library caused by insecure deserialization of untrusted data. A remote attacker can submit a large, crafted payload that, when deserialized, fuels high CPU usage, leading to CPU exhaustion and unresponsiveness of the affected applica...

6.5CVSS6.7AI score0.0059EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/09/15 4:26 p.m.5 views

CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data

A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...

6.5CVSS6.7AI score0.0059EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/09/15 4:26 p.m.2 views

CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data

A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...

6.7AI score0.0059EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.9 views

PT-2025-37727

Name of the Vulnerable Software and Affected Versions: Apache Fory versions prior to 0.12.2 Description: A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue is due to the insecure deserialization of untrusted data. An attacker can provide a large,...

6.5CVSS6.7AI score0.0059EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.6 views

Apache Fory 代码问题漏洞

Apache Fory is a serialization framework from the Apache Foundation. A code issue vulnerability exists in Apache Fory that stems from consuming excessive CPU resources when deserializing untrustworthy data, which could lead to a denial of service attack...

6.5CVSS6.5AI score0.0059EPSS
Exploits0References1
Rows per page
Query Builder