Lucene search
+L

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 10:0 a.m.16 views

Security Bulletin: There is a vulnerability in brace-expansion-2.0.2.tgz used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2026-33750)

Summary There is a vulnerability in brace-expansion-2.0.2.tgz used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2026-33750 DESCRIPTION: The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to...

7.5CVSS6.4AI score0.0043EPSS
Exploits0Affected Software1
Elastic
Elastic
added 2026/05/28 7:25 p.m.49 views

Kibana 8.19.16, 9.3.5, 9.4.2 Security Update (ESA-2026-35)

Uncontrolled Resource Consumption in Kibana Leading to Denial of Service Uncontrolled Resource Consumption CWE-400 in Kibana can lead to denial of service via Excessive Allocation CAPEC-130. An authenticated user can send a specially crafted compressed request payload that is processed prior to...

6.5CVSS5.7AI score0.00296EPSS
Exploits0
Elastic
Elastic
added 2026/05/28 7:24 p.m.16 views

Kibana 8.19.16, 9.3.5, 9.4.1 Security Update (ESA-2026-32)

Uncontrolled Resource Consumption in Kibana Leading to Denial of Service Uncontrolled Resource Consumption CWE-400 in Kibana can lead to a denial of service via Excessive Allocation CAPEC-130. An authenticated user holding a low-privileged role can submit a specially crafted, oversized payload to...

6.5CVSS5.7AI score0.00245EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/03/12 9:16 p.m.5 views

CVE-2026-2581

This is an uncontrolled resource consumption vulnerability CWE-400 that can lead to Denial of Service DoS. In vulnerable Undici versions, when interceptors.deduplicate is enabled, response data for deduplicated requests could be accumulated in memory for downstream handlers. An attacker-controlle...

5.9CVSS5.7AI score0.00566EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/10/31 4:43 a.m.9 views

Cybozu Remote Service vulnerable to uncontrolled resource consumption

Overview Cybozu Remote Service provided by Cybozu, Inc. is vulnerable to uncontrolled resource consumption CWE-400. Cybozu, Inc. reported this vulnerability to JPCERT/CC to notify users of the solution through JVN. Impact Certain operations performed by a logged-in user may lead to huge storage...

6.5CVSS6.6AI score0.00616EPSS
Exploits0References6
Rows per page
Query Builder