The vulnerability of the ext4 kernel component in the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the ext4 kernel component in Linux operating systems is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

CVE-2025-0588

In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a specifically crafted referrer header the user could ensure that all subsequent server responses would return 500 errors rendering the site mostly...

SUSE CVE-2025-21690

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooti...

PT-2025-6319 · Microsoft · Windows Ldap +1

Name of the Vulnerable Software and Affected Versions: Windows Lightweight Directory Access Protocol LDAP affected versions not specified Description: The issue is related to the implementation of the Lightweight Directory Access Protocol LDAP in Windows, caused by synchronization errors when usi...

AZL-56949 CVE-2025-21690 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooti...

The vulnerability of the sclp_init() function (drivers/s390/char/sclp.c) in the Linux operating system allows a malicious actor to cause a service failure.

The vulnerability of the sclpinit function drivers/s390/char/sclp.c in the Linux operating system kernel is related to resource management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2024-38412

Memory corruption while invoking IOCTL calls from user-space to kernel-space to handle session errors...

The vulnerability of iCloud’s service for macOS operating systems, related to errors in the use of standard permissions, allows a perpetrator to execute arbitrary code.

The vulnerability of the iCloud service for macOS operating systems is related to errors in the use of standard permissions. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

FreeBSD : mozilla -- multiple vulnerabilities (20485d27-e540-11ef-a845-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 20485d27-e540-11ef-a845-b42e991fc52e advisory. [email protected] reports: A bug in WebAssembly code generation could have lead to a crash...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2025-0158

IBM EntireX 11.1 is affected by CVE-2025-0158, which could allow a local user to cause a denial of service due to an unhandled error and faulty isolation. The issue is documented in IBM Security Bulletin noting CWE-248 (Uncaught Exception) and a CVSS base of 5.5 (Medium) from IBM’s assessment. Pu...

CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...

CVE-2021-4111

yetiforcecrm is vulnerable to Business Logic Errors...

SUSE CVE-2023-52924

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: don't skip expired elements during walk There is an asymmetry between commit/abort and preparation phase if the following conditions are met: 1. set is a verdict map "1.2.3.4 : jump foo" 2. timeouts are enabl...

CVE-2021-35126

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-29219

Lodestar is a TypeScript implementation of the Ethereum Consensus specification. Prior to version 0.36.0, there is a possible consensus split given maliciously-crafted AttesterSlashing or ProposerSlashing being included on-chain. Because the developers represent uint64 values as native javascript...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2024-25883

CVE-2024-25883 affects the RSD project (rsd-devel) where the mstatus register update in commit 3d13a is incorrect, causing processing errors. The issue is described consistently across multiple databases, with no explicit exploitation details or fixes provided in the connected documents. The CVE ...