1477 matches found
CVE-2026-26932
Improper Validation of Array Index CWE-129 in the PostgreSQL protocol parser in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker can send a specially crafted packet causing a Go runtime panic that terminates the Packetbeat process. This vulnerability requir...
EUVD-2026-8872
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
CVE-2026-26937
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
CVE-2026-26937
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
EUVD-2026-8865
Improper Input Validation CWE-20 in the internal Content Connectors search endpoint in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
EUVD-2026-8863
Improper Validation of Specified Quantity in Input CWE-1284 in Kibana can allow an authenticated attacker with view-only privileges to cause a Denial of Service via Input Data Manipulation CAPEC-153. An attacker can send a specially crafted, malformed payload causing excessive resource consumptio...
CVE-2026-26937
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
CVE-2026-26937 Uncontrolled Resource Consumption in Kibana Leading to Denial of Service
Uncontrolled Resource Consumption CWE-400 in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation CAPEC-153...
CVE-2026-26937
CVE-2026-26937 affects the Timelion component in Kibana . The issue is an Uncontrolled Resource Consumption (CWE-400) that can cause a Denial of Service via Input Data Manipulation (CAPEC-153) . Attack surface is network-based with no user interaction required per the CVSS data, leading to high i...
CVE-2026-26932 Improper Validation of Array Index in Packetbeat Leading to Denial of Service
Improper Validation of Array Index CWE-129 in the PostgreSQL protocol parser in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker can send a specially crafted packet causing a Go runtime panic that terminates the Packetbeat process. This vulnerability requir...
PT-2026-22171
Name of the Vulnerable Software and Affected Versions Kibana affected versions not specified Description An issue exists in the Timelion component that allows for Denial of Service through manipulation of input data, resulting in uncontrolled resource consumption. This can lead to a disruption of...
FreeBSD : openexr -- buffer overflow in istream_nonparallel_read on invalid input data (716d25a6-0fdc-11f1-bfdf-ff9355aecb00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 716d25a6-0fdc-11f1-bfdf-ff9355aecb00 advisory. Cary Phillips reports: openexr v3.4.5 ... fixes an incorrect size check in istreamnonparallelread that...
openexr -- buffer overflow in istream_nonparallel_read on invalid input data
Cary Phillips reports: openexr v3.4.5 ... fixes an incorrect size check in istreamnonparallelread that could lead to a buffer overflow on invalid input data...
CVE-2025-66605
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Since there are input fields on this webpage with the autocomplete attribute enabled, the input content could be saved in the browser the user is using. The affected products and versions are as follows:...
ROS-20260209-73-0025
Vulnerability in python-urllib3 related to incorrect handling of highly compressed input data. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service...
ROS-20260205-73-0027
A vulnerability in the rseq.c component of the Linux operating system kernel is related to the reliance on unreliable input data to make security decisions. Exploitation of the vulnerability allows an attacker to impact the confidentiality and availability of protected information...
ROS-20260203-73-0021
A vulnerability in the btrfs component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an intruder to affect the integrity of protected information...
ROS-20260128-73-0010
A vulnerability in the Linux operating system kernel is related to buffer copying without checking the size of the input data. Exploitation of the vulnerability could allow an attacker acting remotely to escalate his privileges...
CVE-2026-1484
A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries. This can cause memory writes outside the allocated buffer. Applications that process untrust...
CVE-2025-11065
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...