13814 matches found
CVE-2025-59502
Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker to deny service over a network...
CVE-2025-59502
Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker to deny service over a network...
CVE-2025-59502
CVE-2025-59502 describes an issue of uncontrolled resource consumption in Windows Remote Procedure Call that can let an unauthenticated attacker cause a denial of service over the network. The connected documents confirm the vulnerability description across multiple feeds but do not provide concr...
CVE-2025-59502 Remote Procedure Call Denial of Service Vulnerability
...
CVE-2025-59502 Remote Procedure Call Denial of Service Vulnerability
...
Remote Procedure Call Denial of Service Vulnerability
Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker to deny service over a network...
kernel: sunrpc: fix handling of server side tls alerts
In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...
CVE-2025-42903 User Enumeration and Sensitive Data Exposure via RFC Function in SAP Financial Service Claims Management
A vulnerability in SAP Financial Service Claims Management RFC function ICLUSERGETNAMEANDADDRESS allows user enumeration and potential disclosure of personal data through response discrepancies, causing low impact on confidentiality with no impact on integrity or availability...
CVE-2025-42903
CVE-2025-42903 pertains to SAP Financial Service Claims Management via the RFC function ICL_USER_GET_NAME_AND_ADDRESS. The issue allows user enumeration and potential disclosure of personal data due to response discrepancies, with low confidentiality impact and no impact to integrity or availabil...
PT-2025-42157
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An issue involving uncontrolled resource consumption exists in Windows Remote Procedure Call. This can allow an unauthorized attacker to cause a denial of service over a network...
Microsoft Windows Remote Procedure Call Runtime 资源管理错误漏洞
Microsoft Windows Remote Procedure Call Runtime is a powerful technology for creating distributed client/server programs from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Windows Remote Procedure Call Runtime, which can be exploited by an attacker to...
cobbler-file-read-exploit
Cobbler XML-RPC Arbitrary File Read Exploit !Python Version...
CVE-2025-27049
Transient DOS while processing IOCTL call for image encoding...
CVE-2025-27059
Memory corruption while performing SCM call...
CVE-2025-27060
Memory corruption while performing SCM call with malformed inputs...
CVE-2025-47349
Memory corruption while processing an escape call...
CVE-2025-44823
Nagios Log Server before 2024R1.3.2 allows authenticated users to retrieve cleartext administrative API keys via a /nagioslogserver/index.php/api/system/getusers call. This is GL:NLS475...
New ClayRat Spyware Targets Android Users via Fake WhatsApp and TikTok Apps
A rapidly evolving Android spyware campaign called ClayRat has targeted users in Russia using a mix of Telegram channels and lookalike phishing websites by impersonating popular apps like WhatsApp, Google Photos, TikTok, and YouTube as lures to install them. "Once active, the spyware can exfiltra...
CVE-2025-39962
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix untrusted unsigned subtract Fix the following Smatch static checker warning: net/rxrpc/rxgkapp.c:65 rxgkyfsdecodeticket warn: untrusted unsigned subtract. 'ticketlen - 10 4' by prechecking the length of what we're tryi...
CVE-2025-39955
In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. syzbot reported the splat below where a socket had tcpsksk-fastopenrsk in the TCPESTABLISHED state. 0 syzbot reused the server-side TCP Fast Open socket as a new client before the...