49 matches found
PT-2026-41457
Name of the Vulnerable Software and Affected Versions My Notes Safe version 5.3 Description A denial of service issue allows attackers to crash the application by pasting excessively long character strings into note fields. This is triggered when a payload containing 350,000 repeated characters i...
SUSE CVE-2026-43140
In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...
Linux Distros Unpatched Vulnerability : CVE-2026-43140
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. I...
PT-2026-35265
ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers can paste a 2000-byte buffer of repeated characters into the IP field and trigger a search operati...
Ambient ObserverIP Scan Tool 安全漏洞
The Ambient ObserverIP Scan Tool is a security detection tool developed by the American company Ambient, used for network asset scanning and port scanning. Version 1.4.0.1 of the Ambient ObserverIP Scan Tool contains a security vulnerability. This vulnerability could allow local attackers to caus...
CVE-2018-25245 7 Tik 1.0.1.0 Denial of Service via Search
7 Tik 1.0.1.0 contains a denial of service vulnerability that allows attackers to crash the application by submitting excessively long input strings to the search functionality. Attackers can paste a buffer of 7700 characters into the search bar to trigger an application crash...
CVE-2018-25241
CVE-2018-25241 affects Microsoft VPN Browser+ 1.1.0.0 with a denial-of-service vulnerability: unauthenticated attackers can crash the app by submitting an oversized input in the search feature, triggering an unhandled exception. Documented CVSS details: CVSS 3.1 base score 7.5 (AV:N/AC:L/PR:N/UI:...
PT-2026-30363
Microsoft One Search 1.1.0.0 contains a denial of service vulnerability that allows local attackers to crash the application by submitting excessively long input strings to the search functionality. Attackers can paste a buffer of 950 or more characters into the search bar to trigger an unhandled...
CVE-2019-25602
GSearch 1.0.1.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting an excessively long string in the search bar. Attackers can paste a buffer of 2000 characters into the search field, click search, and select any result to trigger an...
CVE-2019-25602
GSearch 1.0.1.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting an excessively long string in the search bar. Attackers can paste a buffer of 2000 characters into the search field, click search, and select any result to trigger an...
CVE-2019-25588 BulletProof FTP Server 2019.0.0.50 Denial of Service via DNS Address
BulletProof FTP Server 2019.0.0.50 contains a denial of service vulnerability in the DNS Address field that allows local attackers to crash the application by supplying an excessively long string. Attackers can enable the DNS Address option in the Firewall settings and paste a buffer of 700 bytes...
PT-2026-20523
ipPulse 1.92 contains a denial of service vulnerability that allows local attackers to crash the application by providing an oversized input in the Enter Key field. Attackers can generate a 256-byte buffer of repeated 'A' characters to trigger an application crash when pasting the malicious conte...
CVE-2020-37195
BlueAuditor 1.7.2.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash...
CVE-2020-37133
UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in the Repeater Host configuration field that allows attackers to crash the application. Attackers can paste an overly long string of 300 characters into the Repeater Host property to trigger an application crash...
CVE-2020-37133
The CVE-2020-37133 entry affects UltraVNC Launcher 1.2.4.0, where the Denial of Service stems from the RepeaterHost configuration field. An attacker can crash the application by supplying an overly long string (300 characters) to RepeaterHost, per the connected PT-2026 vulnerability detail. This ...
Division by zero
Overview Affected versions of this package are vulnerable to Division by zero via the oneflow.view component. An attacker can cause the application to crash by submitting specially crafted input that triggers a floating point exception. Remediation There is no fixed version for oneflow. Reference...
CVE-2025-68132
CVE-2025-68132 affects EVerest EV charging software stack. The issue lies in the DZG_GSH01 powermeter SLIP parser, where is_message_crc_correct reads vec[vec.size()-1] and vec[vec.size()-2] without verifying that at least two bytes exist. Malformed SLIP frames on the serial link can reach this fu...
CVE-2021-47815 Nsauditor 3.2.3 - Denial of Service (PoC)
Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can paste a large buffer of 256 repeated characters into the 'Key' field to trigger an application crash...
Allocation of Resources Without Limits or Throttling
Overview vllm is an A high-throughput and memory-efficient inference and serving engine for LLMs Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the processimageinput in the idefics3 model implementation. An attacker can cause the server...
EUVD-2017-14536
Malware in sbrugna...