Lucene search
+L

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/18 3:49 p.m.10 views

CVE-2026-55205

Hermes WebUI before 0.51.468 contains a resource exhaustion vulnerability in the unauthenticated POST /api/onboarding/oauth/start endpoint that allows unbounded accumulation of in-memory flow state and daemon threads. Attackers can send repeated or concurrent requests to exhaust server memory and...

6.9CVSS5.4AI score0.00301EPSS
Exploits0References6
OSV
OSV
added 2026/06/18 3:49 p.m.4 views

CVE-2026-55205 Hermes WebUI < 0.51.468 - Resource Exhaustion via Unauthenticated OAuth Flow Endpoint

Hermes WebUI before 0.51.468 contains a resource exhaustion vulnerability in the unauthenticated POST /api/onboarding/oauth/start endpoint that allows unbounded accumulation of in-memory flow state and daemon threads. Attackers can send repeated or concurrent requests to exhaust server memory and...

6.9CVSS6AI score0.00301EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/07/12 12:20 p.m.31 views

CVE-2024-39510 cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefilesondemanddaemonread We got the following issue in a fuzz test of randomly issuing the restore command: ================================================================== BUG: KASAN:...

0.00284EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/29 12:0 a.m.9 views

PT-2024-9313

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free vulnerability in the cachefiles component of the Linux kernel. This vulnerability can be exploited to potentially elevate privileges. The...

7.8CVSS5.4AI score0.00284EPSS
Exploits0
Rows per page
Query Builder