Lucene search
K

14 matches found

RedHat Linux
RedHat Linux
added 2026/06/17 3:46 p.m.9 views

389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS)

A flaw was found in 389-ds-base. The getldapmessagecontrolsext function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated attacker can send a specially crafted LDAP request containing hundreds of thousands of minimal controls...

7.5CVSS5.2AI score0.00815EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.17 views

Amazon Linux 2023 : nerdctl (ALAS2023-2026-1735)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1735 advisory. When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash. CVE-2026-33811 When processing HTTP/2 SETTINGS frames, transport...

7.5CVSS7.5AI score0.00813EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.17 views

Amazon Linux 2 : oci-add-hooks, --advisory ALAS2ECS-2026-118 (ALASECS-2026-118)

The version of oci-add-hooks installed on the remote host is prior to 0-0.10.20200504git325a340. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2026-118 advisory. When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a...

7.5CVSS7.5AI score0.00813EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.14 views

Amazon Linux 2023 : docker (ALAS2023-2026-1736)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1736 advisory. When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash. CVE-2026-33811 When processing HTTP/2 SETTINGS frames, transport...

7.5CVSS6AI score0.00813EPSS
Exploits0References16
CVE
CVE
added 2026/05/20 9:0 a.m.46 views

CVE-2026-9064

The CVE-2026-9064 issue affects the 389-ds-base LDAP server. The get_ldapmessage_controls_ext() function does not bound the number of LDAP message controls, allowing a remote, unauthenticated attacker to send requests with hundreds of thousands of minimal controls within the default BER size (2 M...

7.5CVSS5.8AI score0.00815EPSS
Exploits0References20Affected Software3
SUSE CVE
SUSE CVE
added 2026/05/07 2:21 a.m.12 views

SUSE CVE-2026-32936

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the DNS-over-HTTPS DoH GET path accepts oversized dns= query parameter values and performs URL query parsing, base64 decoding, and DNS message unpacking before rejecting the request. Unlike the POST path, which applies a...

7.5CVSS5.7AI score0.00672EPSS
Exploits1References3
Snyk
Snyk
added 2026/03/23 6:14 p.m.4 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion through unbounded expansion of YAML aliases during the process. An attacker can exhaust system resources, causing CPU and memory consumption to spike, by providing crafted YAML input containing deeply nested or...

6.9CVSS5.9AI score0.00211EPSS
Exploits1References3
Snyk
Snyk
added 2026/02/04 10:2 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview @isaacs/brace-expansion is a Brace expansion as known from sh/bash Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to unbounded brace range expansion. An attacker can cause excessive CPU and memory consumption, potentially...

9.2CVSS5.5AI score0.00481EPSS
Exploits0References2
NVD
NVD
added 2026/01/15 7:16 p.m.7 views

CVE-2026-22775

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS0.0057EPSS
Exploits0References8
Veracode
Veracode
added 2025/11/10 5:51 a.m.6 views

Denial Of Service (DoS)

Authlib is vulnerable to Denial-Of-Service via Oversized JWS/JWT. The vulnerability is due to Authlib accepting base64url-encoded header or signature inputs of unbounded size, allowing attackers to send tokens with huge encoded header/signature fields that exhaust CPU and memory during verificati...

7.5CVSS7AI score0.00596EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-7478

Malware in sbrugna...

7.1CVSS7.8AI score0.0519EPSS
Exploits1References9
CNVD
CNVD
added 2023/03/13 12:0 a.m.14 views

Fortinet FortiMail Access Control Error Vulnerability (CNVD-2023-30849)

Fortinet FortiMail is a set of e-mail security gateway products of the U.S. Fita Fortinet. The product provides e-mail security and data protection features. An Access Control Error vulnerability exists in Fortinet FortiMail that stems from the system improperly limiting excessive authentication...

5.3CVSS6.9AI score0.01808EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2014/10/09 6:51 p.m.9 views

apache-poi: entity expansion (billion laughs) flaw

It was found that Apache POI would expand an unlimited number of entities in OOXML documents. A remote attacker able to supply OOXML documents that are parsed by Apache POI could use this flaw to trigger a denial of service attack via excessive CPU and memory consumption...

4.3CVSS6.7AI score0.07395EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/11/15 5:11 p.m.33 views

net-snmp remote DoS via udp packet

The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...

7.8CVSS7.4AI score0.26183EPSS
Exploits1References4
Rows per page
Query Builder