CVE-2025-54121

A denial of service flaw was found in the Starlette ASGI framework. This flaw allows a remote attacker to submit a specially crafted multi-part form with large files. This can exhaust the server's resources, which may block the main thread pool and lead to a denial of service. Mitigation Mitigati...

CVE-2025-49826

A denial of service flaw was found in Next.js. In certain situations, this issue may lead to an HTTP 204 response being cached for static pages, which can result in the 204 response being provided to all users trying to access the page. Mitigation Mitigation for this issue is either not available...

CVE-2025-5473

An integer overflow vulnerability was found in Gimp's handling of ICO files. This vulnerability can lead to code execution if a user is convinced to open a maliciously crafted file. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red...

CVE-2025-1948

A flaw was found in Eclipse Jetty. This vulnerability allows denial of service attack via an HTTP/2 client specifying a very large value for the SETTINGSMAXHEADERLISTSIZE parameter. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red...