Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

EUVD
EUVDadded 2026/06/12 2:23 p.m.14 views

EUVD-2026-36455

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, DefaultHttp2Connection.DefaultEndpoint initialises maxActiveStreams/maxStreams to Integer.MAXVALUE, and Http2Settings never inserts...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.6 views

Astra Linux – Vulnerability in Tomcat9, libcommons-fileupload-java

Apache Commons FileUpload before version 1.5 does not limit the number of request parts that can be processed, which means that an attacker could potentially trigger a Denial-of-Service attack with a malicious upload or series of uploads. It’s important to note that, like all file upload...

7.5CVSS6.7AI score0.46836EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2026/02/23 6:48 a.m.4 views

ImageMagick: ImageMagick vulnerable to denial of service via integer overflow in BMP decoder on 32-bit systems

A vulnerability for an integer overflow has been identified in the ImageMagick image processing software suite on 32-bit systems with non-default resource limits. An attacker can exploit this flaw by providing a specially crafted malicious image file BMP format for processing. Successful...

7.5CVSS5.7AI score0.00738EPSS
Exploits1References6
Github Security Blog
Github Security Blogadded 2025/08/21 2:24 p.m.10 views

vllm API endpoints vulnerable to Denial of Service Attacks

Summary A Denial of Service DoS vulnerability can be triggered by sending a single HTTP GET request with an extremely large header to an HTTP endpoint. This results in server memory exhaustion, potentially leading to a crash or unresponsiveness. The attack does not require authentication, making ...

7.5CVSS7.1AI score0.00527EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2024/01/26 11:6 a.m.10 views

OESA-2024-1100 tomcat security update

The Apache Tomcat software is developed in an open and participatory environment and released under the Apache License version 2. The Apache Tomcat project is intended to be a collaboration of the best-of-breed developers from around the world. We invite you to participate in this open developmen...

7.5CVSS8.6AI score0.51547EPSS
Exploits2References4
Github Security Blog
Github Security Blogadded 2022/08/06 5:20 a.m.278 views

Rust-WebSocket memory allocation based on untrusted length

Impact Untrusted websocket connections can cause an out-of-memory OOM process abort in a client or a server. The root cause of the issue is during dataframe parsing. Affected versions would allocate a buffer based on the declared dataframe size, which may come from an untrusted source. When...

7.5CVSS7.2AI score0.01454EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder