Lucene search
K

30 matches found

NVD
NVD
added 2026/06/19 12:16 a.m.11 views

CVE-2026-52866

An attacker within BLE communication range can monopolize the device's only available BLE connection slot, preventing legitimate users or applications from establishing a connection...

7.1CVSS0.00222EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/18 11:45 p.m.32 views

CVE-2026-52866 Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT Missing Authorization

An attacker within BLE communication range can monopolize the device's only available BLE connection slot, preventing legitimate users or applications from establishing a connection...

7.1CVSS0.00222EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/18 11:45 p.m.5 views

CVE-2026-52866

An attacker within BLE communication range can monopolize the device's only available BLE connection slot, preventing legitimate users or applications from establishing a connection...

7.1CVSS5.2AI score0.00222EPSS
Exploits0References5
CVE
CVE
added 2026/06/18 11:45 p.m.47 views

CVE-2026-52866

The CVE-2026-52866 entry concerns the Apollo Pharmacy Blood Glucose Monitoring System APG-01 with BT lacking authorization in BLE. The connected docs provide concrete details: an attacker in BLE range can monopolize the device’s only available BLE connection slot, blocking legitimate users/applic...

7.1CVSS5.2AI score0.00222EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/18 12:0 a.m.14 views

PT-2026-50822

Name of the Vulnerable Software and Affected Versions Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT affected versions not specified Description An attacker within Bluetooth Low Energy BLE communication range can monopolize the only available BLE connection slot of the device. This...

7.1CVSS5.9AI score0.00222EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/04/15 6:23 a.m.3 views

CVE-2026-40719

Deadwood in MaraDNS 3.5.0036 allows attackers to exhaust connection slots via a zone whose authoritative nameserver address cannot be resolved...

7.5CVSS5.8AI score0.00375EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-0145

Malware in sbrugna...

5CVSS6.4AI score0.09004EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-6085

Malware in sbrugna...

5CVSS6.4AI score0.02032EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-1210

Malware in sbrugna...

5CVSS6.1AI score0.11671EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-2757

Malware in sbrugna...

4.3CVSS6.4AI score0.0149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/01 12:0 a.m.112 views

Ubuntu 20.04 LTS / 22.04 LTS : lighttpd vulnerabilities (USN-5903-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5903-1 advisory. It was discovered that lighttpd incorrectly handled certain inputs, which could result in a stack buffer overflow. A remote attacker could...

7.5CVSS6.6AI score0.08969EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2022/10/31 12:0 a.m.54 views

GLSA-202210-12 : Lighttpd: Denial of Service

The remote host is affected by the vulnerability described in GLSA-202210-12 Lighttpd: Denial of Service - In lighttpd 1.4.65, modwstunnel does not initialize a handler function pointer if an invalid HTTP request websocket handshake is received. It leads to null pointer dereference which crashes...

7.5CVSS7.1AI score0.02714EPSS
Exploits5References4
Veracode
Veracode
added 2022/10/11 1:39 p.m.35 views

Denial Of Service (DoS)

lighttpd is vulnerable to denial of service. The vulnerability exists in gwbackend.c where there is a resource leak which will lead to a connection slot exhaustion after a large amount of anomalous TCP behavior causing an application crash...

7.5CVSS7.2AI score0.02714EPSS
Exploits4References7Affected Software1
Prion
Prion
added 2022/10/06 6:17 p.m.273 views

Design/Logic Flaw

A resource leak in gwbackend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service connection-slot exhaustion after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of modfastcgi is, for example,...

5CVSS7.1AI score0.02714EPSS
Exploits4References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/10/06 6:17 p.m.3 views

CVE-2022-41556

A resource leak in gwbackend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service connection-slot exhaustion after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of modfastcgi is, for example,...

7.5CVSS7.1AI score0.02714EPSS
Exploits4References7
CVE
CVE
added 2022/10/06 12:0 a.m.531 views

CVE-2022-41556

CVE-2022-41556 affects lighttpd 1.4.56–1.4.66, describing a resource leak in gw_backend.c that can cause denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior, related to RDHUP mishandling in certain HTTP/1.1 chunked scenarios (mod_fastcgi also affected). T...

7.5CVSS7AI score0.02714EPSS
Exploits4References5Affected Software1
AlpineLinux
AlpineLinux
added 2022/10/06 12:0 a.m.48 views

CVE-2022-41556

A resource leak in gwbackend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service connection-slot exhaustion after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of modfastcgi is, for example,...

7.5CVSS7.2AI score0.02714EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2015/10/30 10:23 a.m.53 views

CVE-2008-4109

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service connection sl...

9.3CVSS8.1AI score0.44963EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2013/11/20 4:35 p.m.6 views

openssh: Prevent connection slot exhaustion attacks

The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service connection-slot exhaustion by periodically making many new TCP connections...

7.5CVSS6.7AI score0.1651EPSS
Exploits1References4
Prion
Prion
added 2009/12/28 7:30 p.m.20 views

Directory traversal

Directory Proxy Server DPS in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not enable the SOKEEPALIVE socket option, which makes it easier for remote attackers to cause a denial of service connection slot exhaustion via multiple connections, aka Bug Id 6782659...

5CVSS7AI score0.02484EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder