Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14280)

Apple iOS is an operating system developed for mobile devices. apple tvOS is a smart TV operating system. apple watchOS is a smart watch operating system. A denial of service vulnerability exists in multiple Apple products, which can be exploited by attackers to cause a denial of service or...

CVE-2025-57709

The CVE-2025-57709 issue affects Qsync Central. A buffer overflow in Qsync Central (prior to version 5.0.0.4) can allow a remote attacker with a valid user account to modify memory or crash processes. The fixed version is Qsync Central 5.0.0.4 (2026-01-20) and later. Affected scope includes Qsync...

EUVD-2018-8793

Malware in sbrugna...

CVE-2024-21927

CVE-2024-21927 affects the Satellite Management Controller (SMC) firmware in AMD Instinct MI300X accelerators. The root cause is improper input validation in Redfish API commands, which could allow a privileged attacker to use certain special characters to crash and reset service processes like O...

CVE-2025-52547

E3 Site Supervisor Control firmware version 2.31F01 MGW contains an API call that lacks input validation. An attacker can use this command to continuously crash the application services...

CVE-2018-17018

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for timeswitch name...

The vulnerability of the nsswitch.conf component of the library, which handles system calls and core GLibC functions, allows a attacker to cause a service failure.

The vulnerability of the nsswitch.conf component of the library, which handles system calls and core glibc functions, is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

CVE-2021-3055

An improper restriction of XML external entity XXE reference vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to read any arbitrary file from the file system and send a specifically crafted request to the firewall that causes the service to crash...

The vulnerability of the Google Chrome and Sailfish Browser rendering process allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Google Chrome and Sailfish Browser rendering process is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure or execute arbitrary code by deleting the current embedded HTML obje...

CVE-2020-10957

A flaw was found in Dovecot, where it did not properly handle certain malformed NOOP commands. This flaw allows a malicious attacker to cause the submission, submission-login, or lmtp services to crash by sending specially crafted commands...

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service failures using the MySQL protocol...

CVE-2018-17014

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for ipmacbind name...

CVE-2018-17016

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services e.g., inetd, HTTP, DNS, and UPnP via long JSON data for reboottimer name...

UBUNTU-CVE-2017-7519

In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user could crash an application or service using the libradosstriper library...

CVE-2018-3661

Buffer overflow in Intel system Configuration utilities selview.exe and syscfg.exe before version 14 build 11 allows a local user to crash these services potentially resulting in a denial of service...

CVE-2018-3661

Buffer overflow in Intel system Configuration utilities selview.exe and syscfg.exe before version 14 build 11 allows a local user to crash these services potentially resulting in a denial of service...

The vulnerability of the spice library, related to buffer overflows, allows attackers to cause a service failure or execute arbitrary code.

The vulnerability of the spice library is related to buffer overflow exposure of memory contents. Exploiting this vulnerability can allow a remote attacker to cause a service failure or execute arbitrary code using a specially crafted message...

Input validation

An Improper Input Validation issue was discovered in Siemens SIMATIC PCS 7 V8.1 prior to V8.1 SP1 with WinCC V7.3 Upd 13, and V8.2 all versions. The improper input validation vulnerability has been identified, which may allow an authenticated remote attacker who is a member of the administrators...

CVE-2017-6867

A vulnerability was discovered in Siemens SIMATIC WinCC V7.3 before Upd 11 and V7.4 before SP1, SIMATIC WinCC Runtime Professional V13 before SP2 and V14 before SP1, SIMATIC WinCC TIA Portal Professional V13 before SP2 and V14 before SP1 that could allow an authenticated, remote attacker who is...

Multiple F5 BIG-IP Products Remote Denial of Service Vulnerabilities

F5 BIG-IP is an all-in-one network appliance that integrates network traffic management, application security management, load balancing and other functions from F5 USA. A remote denial of service vulnerability exists in several F5 BIG-IP products, which can be exploited by unauthenticated remote...