Lucene search
K

90 matches found

NVD
NVD
added 2023/05/11 10:15 p.m.12 views

CVE-2023-28356

A vulnerability has been identified where a maliciously crafted message containing a specific chain of characters can cause the chat to enter a hot loop on one of the processes, consuming 120% CPU and rendering the service unresponsive...

7.5CVSS7.5AI score0.00718EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/11 12:0 a.m.6 views

CVE-2023-28356

A vulnerability has been identified where a maliciously crafted message containing a specific chain of characters can cause the chat to enter a hot loop on one of the processes, consuming 120% CPU and rendering the service unresponsive...

7.5AI score0.00718EPSS
Exploits0References1
CVE
CVE
added 2023/05/11 12:0 a.m.49 views

CVE-2023-28356

CVE-2023-28356 — Rocket.Chat is affected. A maliciously crafted message containing a specific chain of characters can cause a chat process to enter a hot loop, consuming approximately 120% CPU and rendering the service unresponsive. Public details indicate Rocket.Chat as the vulnerable software, ...

7.5CVSS7.4AI score0.00718EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/02/28 6:15 p.m.3 views

DEBIAN-CVE-2022-41723

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...

7.5CVSS6.7AI score0.04561EPSS
Exploits0References1
OSV
OSV
added 2023/02/28 6:15 p.m.7 views

AZL-34543 CVE-2022-41723 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.2-2

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests...

7.5CVSS6.7AI score0.04561EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/05/26 12:0 a.m.4 views

The vulnerability of the MQTT v5 broker implementation in the Eclipse Mosquitto protocol allows a attacker to trigger a service failure.

The vulnerability of the MQTT v5 broker implementation in Eclipse Mosquitto lies in excessive loading of the central processor. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS7.1AI score0.0126EPSS
Exploits1References4Affected Software2
OpenVAS
OpenVAS
added 2021/10/28 12:0 a.m.22 views

ISC BIND DoS Vulnerability (CVE-2021-25219)

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

5.3CVSS5.8AI score0.08001EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/09/27 12:0 a.m.3 views

PT-2021-22014 · Pypi +3 · Nltk +3

Name of the Vulnerable Software and Affected Versions: nltk affected versions not specified Description: The nltk package is vulnerable to ReDoS regular expression denial of service. An attacker that is able to provide input to the checkComparisonBlock function, specifically the read comparison...

8.7CVSS7.3AI score0.05831EPSS
Exploits3References33
OSV
OSV
added 2021/07/21 3:15 p.m.3 views

CVE-2020-20221

Mikrotik RouterOs before 6.44.6 long-term tree suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...

6.5CVSS5.8AI score
Exploits0References3
CVE
CVE
added 2021/07/21 1:49 p.m.119 views

CVE-2020-20221

The CVE-2020-20221 issue affects Mikrotik RouterOS prior to 6.44.6. A vulnerability in the /nova/bin/cerm process allows an authenticated remote attacker to trigger uncontrolled resource consumption, leading to Denial of Service by overloading CPU. Multiple connected sources (Red Hat, Red Team fe...

6.8CVSS6.3AI score0.02907EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/21 12:0 a.m.5 views

PT-2021-10449 · Mikrotik · Routeros +1

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.44.6 Description: The issue is related to an uncontrolled resource consumption in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's...

6.8CVSS6.3AI score0.02907EPSS
Exploits1References6
CNVD
CNVD
added 2021/07/20 12:0 a.m.23 views

MikroTik RouterOS Uncontrolled Resource Consumption Vulnerability (CNVD-2021-54410)

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. sshd processes in versions of MikroTik RouterOS prior to 6.47 are vulnerable to uncontrolled resource consumption...

6.5CVSS3.5AI score0.01938EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/20 12:0 a.m.19 views

MikroTik RouterOS Uncontrolled Resource Consumption Vulnerability

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality.An uncontrolled resource consumption vulnerability exists in the memtest process in versions of MikroTik RouterOS...

6.5CVSS3.7AI score0.01823EPSS
Exploits1References1
CVE
CVE
added 2021/07/19 4:14 p.m.117 views

CVE-2020-20230

MikroTik RouterOS prior to stable 6.47 is affected by an uncontrolled resource consumption in the sshd process, leading to Denial of Service when an authenticated remote attacker overloads the CPU. Multiple sources (Red Hat CVE entry, PT Security advisory, OpenVAS plugin, CNVD/CNNVD summaries, an...

6.5CVSS6.3AI score0.01938EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/19 12:0 a.m.5 views

PT-2021-10453 · Mikrotik · Routeros +1

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.47 Description: The issue is related to uncontrolled resource consumption in the sshd process, allowing an authenticated remote attacker to cause a Denial of Service by overloading the system's CPU...

6.5CVSS6.2AI score0.01938EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/07/19 12:0 a.m.3 views

Mikrotik RouterOs 资源管理错误漏洞

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. sshd processes in versions of MikroTik RouterOS prior to 6.47 are vulnerable to uncontrolled resource consumption...

6.5CVSS5.7AI score0.01938EPSS
Exploits1References2
Prion
Prion
added 2021/07/08 12:15 p.m.23 views

Denial of service

Mikrotik RouterOs before 6.47 stable tree suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...

4CVSS6.3AI score0.02001EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2021/07/08 12:0 a.m.9 views

Mikrotik RouterOs Stack Depletion Vulnerability

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A stack exhaustion vulnerability exists in the /nova/bin/net process in Mikrotik RouterOs version 6.44.5. The...

6.5CVSS6.7AI score0.02111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/07/08 12:0 a.m.5 views

PT-2021-10445 · Mikrotik · Routeros +1

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.47 Description: The issue is related to an uncontrolled resource consumption in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's...

6.5CVSS6.2AI score0.02001EPSS
Exploits0References6
OSV
OSV
added 2021/07/07 2:15 p.m.4 views

CVE-2020-20213

Mikrotik RouterOs 6.44.5 long-term tree suffers from an stack exhaustion vulnerability in the /nova/bin/net process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU...

6.5CVSS6.7AI score0.02111EPSS
Exploits0References3
Rows per page
Query Builder