The vulnerability of the sqlg_parallel_ts_seq component in the Virtuoso-OpenSource web application development platform allows a attacker to cause a service failure.

The vulnerability of the sqlgparalleltsseq component in the Virtuoso-opensource web application development platform is related to the improper disabling or release of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specially crafte...

The vulnerabilities of Linux operating system’s x86/hypervisor kernel components, which allow attackers to cause service interruptions.

The vulnerability of the hvmachineshutdown function in Linux kernel-based x86/hyperv components is related to improper initialization. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Hash Handler component in the 389-ds-base package allows a hacker to trigger a service failure.

The vulnerability of the Hash Handler component in the 389-ds-base package is related to insufficient password hashing. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

Vulnerability of RDMA/hns components of Linux operating system cores, allowing attackers to cause service interruptions

The vulnerability of RDMA/hns components of the Linux operating system is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `tcp_can_coalesce_send_queue_head()` function in the `net/ipv4/tcp_output.c` module of the Linux kernel allows a attacker to cause a service failure.

The vulnerability of the tcpcancoalescesendqueuehead function in the net/ipv4/tcpoutput.c module of the Linux kernel is associated with code errors. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the Cisco AnyConnect VPN server’s microprogramming software in Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways allows a intruder to trigger a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways is related to a reallocation of memory. Exploiting this vulnerability could allow an attacker to cause service interruptions by sending specially...

CVE-2024-12537

In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the api/v1/utils/code/format endpoint. If a malicious actor sends a POST request with an excessively high volume of content, the server could become completely...

CVE-2024-12537

In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the api/v1/utils/code/format endpoint. If a malicious actor sends a POST request with an excessively high volume of content, the server could become completely...

CVE-2024-12537 Unauthenticated Denial of Service in open-webui/open-webui

In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the api/v1/utils/code/format endpoint. If a malicious actor sends a POST request with an excessively high volume of content, the server could become completely...

CVE-2024-12537 Unauthenticated Denial of Service in open-webui/open-webui

In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the api/v1/utils/code/format endpoint. If a malicious actor sends a POST request with an excessively high volume of content, the server could become completely...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE lies in the use of incorrect authentication tokens due to unlimited resource distribution. This allows a hacker to cause service failures.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE stems from the use of incorrect authentication tokens due to unlimited resource distribution. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the Internet Printing Protocol (IPP) implementation in multifunctional HP LaserJet MFP devices allows a perpetrator to cause service interruptions.

The vulnerability of the Internet Printing Protocol IPP implementation in microprogrammed multifunctional devices like HP LaserJet MFP is related to improper handling of unexpected types of data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending...

The vulnerability of Zoom’s video conferencing software, related to buffer overflows, allows attackers to trigger a service failure.

The vulnerability of Zoom’s video conferencing software is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of Zoom’s video conferencing software, related to buffer overflows, allows attackers to trigger a service failure.

The vulnerability of Zoom’s video conferencing software is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the DCM files on the medical image and data management system, as well as the Sante PACS Server, allows a perpetrator to trigger a service failure.

The vulnerability of the DCM files on the medical image and data management system, as well as those on the Sante PACS Server, is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of Zoom Apps software products is related to the overflowing buffer in dynamic memory, which allows a malicious actor to trigger a service failure.

The vulnerability of Zoom Apps software products is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the information extraction application for Active Directory in Splunk’s Supporting Add-on for Active Directory lies in the use of a regular expression with high computational complexity, which can lead to service interruptions.

The vulnerability of the Active Directory data extraction application “Splunk Supporting Add-on for Active Directory” is related to the use of a regular expression with high computational complexity. Exploiting this vulnerability could allow an attacker to cause a service failure...

firefox: Unexpected GC during RegExp bailout processing

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it...

The vulnerability of the KWHotel software for hotel management lies in the lack of a mechanism to neutralize elements in the CSV file, allowing a hacker to trigger a service failure.

The vulnerability of the KWHotel hotel management software is related to the lack of mechanisms for neutralizing elements in the CSV file. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability in Mozilla Firefox, Firefox ESR, and email clients Thunderbird, Thunderbird ESR, is related to the use of memory after it is freed. This allows an attacker to cause a service failure.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially created website...