90 matches found
CVE-2023-28356
A vulnerability has been identified where a maliciously crafted message containing a specific chain of characters can cause the chat to enter a hot loop on one of the processes, consuming 120% CPU and rendering the service unresponsive...
CVE-2023-28356
A vulnerability has been identified where a maliciously crafted message containing a specific chain of characters can cause the chat to enter a hot loop on one of the processes, consuming 120% CPU and rendering the service unresponsive...
CVE-2023-28356
CVE-2023-28356 — Rocket.Chat is affected. A maliciously crafted message containing a specific chain of characters can cause a chat process to enter a hot loop, consuming approximately 120% CPU and rendering the service unresponsive. Public details indicate Rocket.Chat as the vulnerable software, ...
DEBIAN-CVE-2022-41723
A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...
AZL-34543 CVE-2022-41723 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.2-2
A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...
The vulnerability of the MQTT v5 broker implementation in the Eclipse Mosquitto protocol allows a attacker to trigger a service failure.
The vulnerability of the MQTT v5 broker implementation in Eclipse Mosquitto lies in excessive loading of the central processor. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
ISC BIND DoS Vulnerability (CVE-2021-25219)
ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
PT-2021-22014 · Pypi +3 · Nltk +3
Name of the Vulnerable Software and Affected Versions: nltk affected versions not specified Description: The nltk package is vulnerable to ReDoS regular expression denial of service. An attacker that is able to provide input to the checkComparisonBlock function, specifically the read comparison...
CVE-2020-20221
Mikrotik RouterOs before 6.44.6 long-term tree suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...
CVE-2020-20221
The CVE-2020-20221 issue affects Mikrotik RouterOS prior to 6.44.6. A vulnerability in the /nova/bin/cerm process allows an authenticated remote attacker to trigger uncontrolled resource consumption, leading to Denial of Service by overloading CPU. Multiple connected sources (Red Hat, Red Team fe...
PT-2021-10449 · Mikrotik · Routeros +1
Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.44.6 Description: The issue is related to an uncontrolled resource consumption in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's...
MikroTik RouterOS Uncontrolled Resource Consumption Vulnerability (CNVD-2021-54410)
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. sshd processes in versions of MikroTik RouterOS prior to 6.47 are vulnerable to uncontrolled resource consumption...
MikroTik RouterOS Uncontrolled Resource Consumption Vulnerability
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality.An uncontrolled resource consumption vulnerability exists in the memtest process in versions of MikroTik RouterOS...
CVE-2020-20230
MikroTik RouterOS prior to stable 6.47 is affected by an uncontrolled resource consumption in the sshd process, leading to Denial of Service when an authenticated remote attacker overloads the CPU. Multiple sources (Red Hat CVE entry, PT Security advisory, OpenVAS plugin, CNVD/CNNVD summaries, an...
PT-2021-10453 · Mikrotik · Routeros +1
Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.47 Description: The issue is related to uncontrolled resource consumption in the sshd process, allowing an authenticated remote attacker to cause a Denial of Service by overloading the system's CPU...
Mikrotik RouterOs 资源管理错误漏洞
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. sshd processes in versions of MikroTik RouterOS prior to 6.47 are vulnerable to uncontrolled resource consumption...
Denial of service
Mikrotik RouterOs before 6.47 stable tree suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...
Mikrotik RouterOs Stack Depletion Vulnerability
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A stack exhaustion vulnerability exists in the /nova/bin/net process in Mikrotik RouterOs version 6.44.5. The...
PT-2021-10445 · Mikrotik · Routeros +1
Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.47 Description: The issue is related to an uncontrolled resource consumption in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's...
CVE-2020-20213
Mikrotik RouterOs 6.44.5 long-term tree suffers from an stack exhaustion vulnerability in the /nova/bin/net process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...