Lucene search
+L

3980 matches found

Positive Technologies
Positive Technologies
•added 2026/06/15 12:0 a.m.•21 views

PT-2026-49583

Name of the Vulnerable Software and Affected Versions Angular versions prior to 22.0.1 Angular versions prior to 21.2.17 Angular versions prior to 20.3.25 Description A Denial of Service DoS issue exists in the @angular/common package. The formatDate function, also used by the standard DatePipe,...

8.2CVSS5.9AI score0.00331EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
•added 2026/06/12 12:0 a.m.•16 views

EulerOS Virtualization 2.13.1 : python-pyasn1 (EulerOS-SA-2026-2387)

According to the versions of the python-pyasn1 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the pyasn1 library is vulnerable to a Denial of Service DoS...

7.5CVSS5.5AI score0.00803EPSS
Exploits1References3
Atlassian
Atlassian
•added 2026/06/11 5:30 p.m.•14 views

DoS (Denial of Service) axios Dependency in Bamboo Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 10.2.9, 11.0.7, 12.0.0, and 12.1.0 of Bamboo Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an unauthenticate...

7.5CVSS5.2AI score0.0063EPSS
Exploits1
OSV
OSV
•added 2026/06/11 3:36 p.m.•5 views

CVE-2026-44490 Axios: DoS & Header Injection via Prototype Pollution Read-Side Gadgets in axios merge functions

Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, axios exposes two read-side prototype-pollution gadgets. When Object.prototype is polluted by an upstream dependency in the same process e.g. lodash .merge / CVE-2018-16487, axios silently picks up the...

4.8CVSS5.9AI score0.00287EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
•added 2026/06/11 12:0 a.m.•14 views

AlmaLinux 10 : openssl (ALSA-2026:25237)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:25237 advisory. openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing CVE-2026-7383 openssl: OpenSSL: Denial of Service due to...

9.1CVSS5.9AI score0.02719EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
•added 2026/06/11 12:0 a.m.•22 views

RHEL 9 : containernetworking-plugins (RHSA-2026:25251)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:25251 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network...

10CVSS8.3AI score0.01945EPSS
Exploits3References10
RedHat Linux
RedHat Linux
•added 2026/06/10 8:9 p.m.•10 views

kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS5.4AI score0.00114EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2026/06/10 8:59 a.m.•10 views

CVE-2026-41983

DoS vulnerability in the browser kernel. Impact: Successful exploitation of this vulnerability may affect availability...

4.3CVSS5.4AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 3:0 a.m.•11 views

CVE-2026-36807

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

7.5CVSS5.9AI score0.00309EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 11:46 p.m.•17 views

EUVD-2026-35884

Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.4.0, a denial-of-service vulnerability exists in the Ed25519 multisig delinearization code path. Ed25519PublicKey::delinearize in keys/src/multisig/mod.rs called...

4.3CVSS5.5AI score0.00231EPSS
Exploits0References3
OSV
OSV
•added 2026/06/09 9:59 p.m.•6 views

GHSA-833P-95JQ-929Q PhoenixStorybook: Unbounded atom creation from LiveView event params (atom-table DoS)

Summary An attacker who can deliver psb-assign, psb-toggle, psb-set-theme, upper-tab-navigation, lower-tab-navigation, playground-change, or playground-toggle LiveView events to a mounted Phoenix Storybook playground can flood the BEAM atom table with attacker-controlled strings, permanently...

8.2CVSS5.5AI score0.00537EPSS
Exploits0References6
NVD
NVD
•added 2026/06/09 7:17 p.m.•16 views

CVE-2026-36816

Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

7.5CVSS0.00309EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 7:17 p.m.•11 views

CVE-2025-55659

A NULL pointer dereference in the cttsboxwrite function isomedia/boxcodebase.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

6.5CVSS0.00345EPSS
Exploits1References2
NVD
NVD
•added 2026/06/09 7:17 p.m.•14 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS0.00467EPSS
Exploits1References2
OSV
OSV
•added 2026/06/09 2:34 p.m.•8 views

SUSE-SU-2026:2325-1 Security update for kubernetes1.26

This update for kubernetes1.26 fixes the following issues - CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1265740. - CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY frame parsing leads to denial of service...

8.7CVSS5.4AI score0.00781EPSS
Exploits0References6
Veracode
Veracode
•added 2026/06/09 9:19 a.m.•13 views

Denial Of Service (DoS)

Netty is vulnerable to Denial of Service DoS. The vulnerability is due to unbounded accumulation of incomplete SCTP message fragments in nested CompositeByteBuf structures without limits on fragment count, size, or stream identifiers, which allows an attacker to exhaust memory and processing...

7.5CVSS5.5AI score0.0038EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
•added 2026/06/09 3:51 a.m.•38 views

CVE-2026-41849 Spring Framework Denial of Service via Integer Overflow in SpEL Expressions

An integer overflow vulnerability exists in the evaluation logic of the Spring Expression Language SpEL. An attacker can exploit this by supplying a specially crafted SpEL expression that triggers excessive resource consumption, resulting in a Denial of Service DoS. Affected versions: Spring...

7.5CVSS0.00263EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/06/09 12:0 a.m.•21 views

PT-2026-48160

🚨 CVE-2025-55657 A NULL pointer dereference in the gf odf vvc cfg write bs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file. šŸŽ–@cveNotify...

7.5CVSS5.2AI score0.00467EPSS
Exploits1References4
Debian CVE
Debian CVE
•added 2026/06/09 12:0 a.m.•11 views

CVE-2025-52293

A segmentation violaton in the gfhevcreadspsbsinternal function mediatools/avparsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying crafted HEVC SPS data...

7.5CVSS5.5AI score0.00467EPSS
Exploits1
Positive Technologies
Positive Technologies
•added 2026/06/09 12:0 a.m.•18 views

PT-2026-48305

Name of the Vulnerable Software and Affected Versions Spring Security versions 5.7.0 through 5.7.23 Spring Security versions 5.8.0 through 5.8.25 Spring Security versions 6.3.0 through 6.3.16 Spring Security versions 6.4.0 through 6.4.16 Spring Security versions 6.5.0 through 6.5.10 Spring Securi...

7.5CVSS5.2AI score0.00331EPSS
Exploits0References5
Rows per page
Query Builder