Vulnerability of the MySQL Server component: The DML mechanism of the MySQL database management system’s server allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component relates to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

RT-Thread buffer overflow vulnerability (CNVD-2025-16523)

RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that originates from the operation of the parameter timeout in the file rt-thread/components/lwp/lwpsyscall.c, which can be exploited by an attacker to...

MongoDB Server Resource Management Error Vulnerability

MongoDB Server is the United States MongoDB company's set of open source NoSQL database . The database provides collection-oriented storage , dynamic query , data replication and automatic failover and other functions . A security vulnerability exists in MongoDB Server versions prior to 6.0.23,...

MongoDB Server Resource Management Error Vulnerability (CNVD-2025-15516)

MongoDB Server is a distributed document database system from MongoDB. A resource management error vulnerability exists in MongoDB Server versions prior to 8.0 through 8.0.10 that stems from inefficient memory management for internal operations. An attacker could exploit this vulnerability to cau...

The vulnerability of the DS-Lite technology (Dual-Stack Lite) and NAT (Network Address Translation) in the Junos OS router series of MX devices, which allows a hacker to cause a service failure.

The vulnerability of the DS-Lite Dual-Stack Lite technology and NAT Network Address Translation in Junos OS routers of the MX series is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by...

n8n is vulnerable to Improper Authorization through its `/stop` endpoint

Summary An authorization vulnerability was discovered in the /rest/executions/:id/stop endpoint of n8n. An authenticated user can stop workflow executions that they do not own or that have not been shared with them, leading to potential business disruption. Impact This is an improper authorizatio...

The vulnerability of microprogrammed network board software from ASR Microelectronics, such as ASR1803L, ASR1806, ASR1901, and ASR1903L, arises from the execution of operations beyond the buffer boundaries in memory. This allows attackers to cause system failures.

The vulnerability of microprogrammed network board software from ASR Microelectronics, including models ASR1803L, ASR1806, ASR1901, and ASR1903L, arises due to the operation of an action that goes beyond the buffer boundaries in memory during the processing of the file devapi.c...

The vulnerability of the FactoryTalk Linx automation system’s software, related to insufficient verification of input data, allows a intruder to trigger a service failure.

The vulnerability of the FactoryTalk Linx automation system’s software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending a malicious package...

Vulnerability of the hci_dma_irq_handler() function in the drivers/i3c/master/mipi-i3c-hci/dma.c module – This driver is part of the Linux kernel’s I3C support mechanism, which can be exploited by attackers to cause service interruptions.

Vulnerability of the hcidmairqhandler function in the drivers/i3c/master/mipi-i3c-hci/dma.c module – The I3C driver support in the Linux kernel is vulnerable due to buffer out-of-buffer reading. Exploiting this vulnerability could allow an attacker to cause a system failure...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows a hacker to cause a service failure.

Vulnerability of the MySQL Cluster component: General database management systems related to MySQL Cluster are vulnerable to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z series network devices, known as Teleworker Gateway, allows a intruder to cause a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z series Teleworker Gateways is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the PLS FTP-server command in the PCMan FTP Server allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the PLS FTP-server’s command line interface is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service interruptions...

How to Upgrade the NATS Server Used by Veeam Backup for Microsoft 365

Purpose This article provides information about upgrading the NATS Server used by Veeam Backup for Microsoft 365. NATS Server Version Impact It is recommended that customers use the latest supported version of NATS Server with Veeam Backup for Microsoft 365 to avoid any potential performance...

The vulnerability of Juniper Networks Junos OS network devices of the MX series, related to improper memory release, allows a attacker to trigger a service failure.

The vulnerability of Juniper Networks Junos OS network devices of the MX series is related to improper memory release. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Denial-of-Service (DoS) after Unusual or Exceptional Conditions vulnerability (CVE-2025-4663)

An Improper Check for Unusual or Exceptional Conditions vulnerability in Brocade Fabric OS before 9.2.2.a could allow an authenticated, network-based attacker to cause a Denial-of-Service DoS. The vulnerability is encountered when supportsave is invoked remotely, using ssh command or SANnav inlin...

libtpms 缓冲区错误漏洞

libtpms is a software emulation of a Trusted Platform Module by the individual developer Stefan Berger. A buffer error vulnerability exists in libtpms that stems from an out-of-bounds read in the CryptHmacSign function, which could lead to a service interruption...

kernel: vsock/virtio: discard packets if the transport changes

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access...

The vulnerability of IBM DB2 database management systems and IBM DB2 Connect Servers lies in their uncontrolled memory distribution, which allows attackers to cause service interruptions.

The vulnerability of IBM DB2 database management systems, including IBM DB2 Connect Server, is related to uncontrolled memory allocation. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted requests...

The vulnerability of IBM DB2 database management systems and IBM DB2 Connect Server lies in buffer overflows in the stack, which allows attackers to cause service interruptions.

The vulnerability of IBM DB2 database management systems, including IBM DB2 Connect Server, is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially crafted requests...

The vulnerability of the mptcp_pm_nl_append_new_local_addr() function in the net/mptcp/pm_netlink.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the mptcppmnlAppendNewLocalAddr function in the net/mptcp/pmnetlink.c module of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...