The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to deficiencies in the authentication process due to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the module responsible for processing URL addresses of medical image and data management systems, such as Sante PACS Server PG, allows a hacker to trigger a service failure.

The vulnerability of the URL parsing module of the Sante PACS Server PG system is related to insufficient data validation during URL parsing. Exploiting this vulnerability could allow an attacker to cause service interruptions...

The vulnerability of the USB-Audio component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the USB-Audio component in the Linux operating system is related to errors in reading beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the tegra194 component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the tegra194 component in the Linux operating system’s kernel is related to an uncontrolled and exploitable flaw. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

SUSE-SU-2025:0181-1 Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005573 fixes several issues. The following security issues were fixed: - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. - CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637. -...

The vulnerability of Dell PowerScale InsightIQ software for performance monitoring and reporting lies in its insufficient attempt-limiting mechanism for authentication. This allows a malicious actor to trigger a service failure.

The vulnerability of the software for performance monitoring and report generation in Dell PowerScale InsightIQ is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability allows a malicious actor to trigger service interruptions remotely...

The vulnerability of the MapUrlToZone method in the IInternetSecurityManager interface on Microsoft Windows operating systems allows a attacker to cause a service failure.

The vulnerability of the MapUrlToZone method in the IInternetSecurityManager interface of Microsoft Windows operating systems is related to security flaws resulting from a full overflow condition. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

The vulnerability of the Netflow v9 protocol implementation of the FastNetMon detection and prevention DDoS attack tool allows a perpetrator to cause a service failure.

The vulnerability in the implementation of the Netflow v9 protocol for the FastNetMon tool, which is used for detecting and preventing DDoS attacks, stems from the lack of checks for division by zero when processing templates. Exploiting this vulnerability could allow a malicious actor to cause...

The vulnerability of Palo Alto Networks’ network switches, managed by the PAN-OS operating system, stems from insufficient checks for unusual or exceptional states. This allows attackers to trigger service interruptions.

The vulnerability of Palo Alto Networks’ network switches, managed by the PAN-OS operating system, is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending a specially crafted network...

The vulnerability of the Apache Tomcat application server, related to uncontrolled resource consumption, allows attackers to cause service failures.

The vulnerability of the Apache Tomcat application server is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the vpn.cgi web interface script of the DrayTek Vigor router software allows a hacker to trigger a service failure.

The vulnerability of the vpn.cgi web interface of the DrayTek Vigor router operating system is related to buffer overflow during the processing of the sPeerId parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

The vulnerability of the Ruijie Reyee OS operating system lies in the premature release of resources during its operation period. This allows attackers to interrupt legitimate user sessions and cause service failures.

The vulnerability of the Ruijie Reyee OS is related to the premature release of resources during its operation. Exploiting this vulnerability allows a remote attacker to interrupt a legitimate user’s session and cause service failures...

The vulnerability of Remote Desktop Services (RDS) for Windows operating systems allows a hacker to trigger a service failure.

The vulnerability of Remote Desktop Services RDS for Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions from a remote location...

The vulnerability of the SEC_ASN1DecodeItem_Util function in the Mozilla Firefox browser and Thunderbird email client allows a hacker to trigger a service failure.

The vulnerability of the SECASN1DecodeItemUtil function in Mozilla Firefox and Thunderbird’s email client is related to the dereferencing of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions...

Amazon Linux 2022 : expat, expat-devel, expat-static (ALAS2022-2022-028)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-028 advisory. expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate...

The vulnerability of the TLS processing function in Cisco Firepower Threat Defense’s microprogramming system allows a attacker to induce a service failure.

The vulnerability of the TLS processing function in Cisco Firepower Threat Defense’s microprogramming network interfaces is related to the use of the NULL pointer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the SSL VPN remote access function in Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) allows a attacker to cause a service failure.

The vulnerability of the SSL VPN remote access function in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD systems is related to the use of insufficiently random values. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the ABB VPNI function in the S+ Control API of the software for management and monitoring of ABB Symphony Plus S+ Operations, S+ Engineering, and S+ Analyst allows a perpetrator to trigger a service failure.

The vulnerability of the ABB VPNI function in the S+ Control API of the ABB Symphony Plus S+ Operations, S+ Engineering, and S+ Analyst software for management and monitoring systems is related to errors in processing relative paths. Exploiting this vulnerability can allow attackers to cause...

The vulnerability of the Citrix NetScaler Application Delivery Controller (previously Citrix ADC) and the Citrix NetScaler Gateway (previously Citrix Gateway) access control systems lies in the fact that operations are executed outside of the buffer in memory, allowing attackers to cause service failures.

The vulnerability of the Citrix NetScaler Application Delivery Controller previously Citrix ADC and the Citrix NetScaler Gateway previously Citrix Gateway access control system lies in the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cau...