Lucene search
K

299 matches found

BDU FSTEC
BDU FSTEC
added yesterday14 views

Blitz Identity Provider (Authentication server)

...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/06/30 12:41 p.m.7 views

EUVD-2026-40307

Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server...

8.8CVSS5.8AI score0.00486EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/30 12:41 p.m.40 views

CVE-2026-8452 Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service

Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server...

8.8CVSS0.00486EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/19 1:58 a.m.14 views

CVE-2026-8745

A vulnerability was identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogstimeradd in the library /src/ausf/nausf-handler.c of the component AUSF. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit is publicly available an...

6.5CVSS5.5AI score0.00372EPSS
Exploits1References1
CVE
CVE
added 2026/05/17 9:45 a.m.20 views

CVE-2026-8745

Technical details are not publicly available in the provided documents; no information on affected versions, root cause, or remediation beyond the description. Monitor for updates.

6.5CVSS5.5AI score0.00372EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/05/14 12:0 a.m.9 views

EUVD-2026-30211

Yubico webauthn-server-core aka java-webauthn-server 2.8.0 before 2.8.2 incorrectly checks a function's return value in the second factor flow, leading to impersonation...

7.5CVSS5.8AI score0.00308EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/11 9:45 a.m.11 views

NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

A flaw was found in NGINX, specifically within the ngxmailauthhttpmodule. When this module is enabled, and CRAM-MD5 or APOP authentication is active with an authentication server that permits retries, undisclosed requests can cause NGINX worker processes to terminate. This can lead to a Denial of...

8.7CVSS5.8AI score0.00921EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/05 8:41 a.m.12 views

NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

A flaw was found in NGINX, specifically within the ngxmailauthhttpmodule. When this module is enabled, and CRAM-MD5 or APOP authentication is active with an authentication server that permits retries, undisclosed requests can cause NGINX worker processes to terminate. This can lead to a Denial of...

8.7CVSS5.8AI score0.00921EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/10 1:22 a.m.8 views

CVE-2026-30075

OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response For example 100 byte. The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes o...

7.5CVSS5.9AI score0.00382EPSS
Exploits1References1
NVD
NVD
added 2026/04/08 5:21 p.m.4 views

CVE-2026-30075

OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response For example 100 byte. The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes o...

7.5CVSS0.00382EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/08 12:0 a.m.18 views

CVE-2026-30075

OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response For example 100 byte. The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes o...

0.00382EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/08 12:0 a.m.2 views

CVE-2026-30075

OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response For example 100 byte. The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes o...

5.8AI score0.00382EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.7 views

PT-2026-31331

Name of the Vulnerable Software and Affected Versions OpenAirInterface version 2.2.0 Description OpenAirInterface version 2.2.0 contains a buffer overflow issue when processing an UplinkNASTransport with an Authentication Response containing an oversized NAS PDU for example, 100 bytes. The respon...

7.5CVSS6.1AI score0.00382EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/07 6:43 p.m.4 views

NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

A flaw was found in NGINX, specifically within the ngxmailauthhttpmodule. When this module is enabled, and CRAM-MD5 or APOP authentication is active with an authentication server that permits retries, undisclosed requests can cause NGINX worker processes to terminate. This can lead to a Denial of...

8.7CVSS5.9AI score0.00921EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/03/29 12:29 a.m.6 views

SUSE CVE-2025-59028

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

5.3CVSS5.9AI score0.00447EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/27 9:31 a.m.4 views

EUVD-2025-209088

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

5.3CVSS5.9AI score0.00447EPSS
Exploits0References2
NVD
NVD
added 2026/03/27 9:16 a.m.5 views

CVE-2025-59028

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

7.5CVSS0.00447EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/27 8:10 a.m.3 views

CVE-2025-59028

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

5.3CVSS5.9AI score0.00447EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/27 8:10 a.m.29 views

CVE-2025-59028

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

5.3CVSS0.00447EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/27 8:10 a.m.3 views

CVE-2025-59028

When sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to fail. Invalid BASE64 data can be used to DoS a vulnerable server to break concurrent logins. Install fixed version or disable concurrency in login processes hea...

7.5CVSS5.9AI score0.00447EPSS
Exploits0References1
Rows per page
Query Builder