Medium: containerd

Issue Overview: In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. CVE-2022-27664 Affected Packages: containerd Note: This advisory is applicable to...

The vulnerability of the Elasticsearch search engine, related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of the Elasticsearch search engine is related to an uncontrolled consumption of resources. Exploiting this vulnerability allows a malicious actor to cause service interruptions through specially crafted HTTP requests...

CVE-2023-45627

An authenticated Denial-of-Service DoS vulnerability exists in the CLI service. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point...

Design/Logic Flaw

Unauthenticated Denial-of-Service DoS vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected access point...

Arbitrary file deletion

There are arbitrary file deletion vulnerabilities in the AirWave client service accessed by PAPI Aruba's access point management protocol. Successful exploitation of these vulnerabilities result in the ability to delete arbitrary files on the underlying operating system, which could lead to the...

CVE-2023-45627

An authenticated Denial-of-Service DoS vulnerability exists in the CLI service. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point...

The vulnerability of the internal/dcraw_common.cpp component in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the internal/dcrawcommon.cpp component in the LibRaw image processing library is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker who operates remotely to cause service interruptions...

The vulnerability in the `index.c:readEntry()` component of Git’s C language Libgit2 implementation allows a hacker to cause a service failure.

The vulnerability of the index.c:readEntry component in the Git methods implemented in the C language using Libgit2 is related to the repeated release of memory. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the Squid proxy server, related to errors in certificate verification for SSL/TLS, allows a perpetrator to trigger a service failure.

The vulnerability of the Squid proxy server is related to errors during the verification of SSL/TLS certificates. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service interruptions...

The vulnerability in web browsers Firefox ESR, Firefox, and the email client Thunderbird, related to writing beyond the buffer limit, allows attackers to trigger a service failure.

The vulnerability in web browsers Firefox ESR, Firefox, and the email client Thunderbird is related to buffer overflow attacks. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the OpenImageIO image processing library, related to reading data beyond the permissible buffer limits, allows a hacker to cause a service failure.

The vulnerability of the OpenImageIO image processing library lies in the reading of data beyond the permissible buffer size. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using a specially created PSD file...

The vulnerability of the PowerScale OneFS operating system, related to insufficient resource capacity, allows a hacker to trigger a service failure.

The vulnerability of the PowerScale OneFS operating system is related to insufficient resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

kernel: rxrpc: Make it so that a waiting process can be aborted

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Make it so that a waiting process can be aborted When sendmsg creates an rxrpc call, it queues it to wait for a connection and channel to be assigned and then waits before it can start shovelling data as the encrypted DATA...

The vulnerability of PPMD in Juniper Networks Junos router series MX operating systems allows a attacker to cause a service failure.

The vulnerability of the PPMD module in Juniper Networks Junos routers of the MX series operating systems is related to improper handling of indeterminate values. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

The vulnerability of the Connectivity Fault Management function in Juniper Networks’ Junos OS-based MX routers allows a attacker to cause a service failure.

The vulnerability of the Connectivity Fault Management CFM function in Juniper Networks’ Junos OS routers of the MX series is related to incorrect checking of the specified index, position, or offset in input data. Exploiting this vulnerability can allow a malicious actor to cause service...

Shares Manipulation DoS Vulnerability in StakedUSDe

Lines of code Vulnerability details Impact The StakedUSDe contract is vulnerable to manipulation by a malicious actor, leading to a permanent interruption of operations through a Denial-of-Service DoS attack. This vulnerability also impacts StakedUSDeV2 due to its inheritance of the StakedUSDe...

The vulnerability of the SSH daemon on the RouterOS operating system, specifically the hAP lite router, allows a hacker to cause a service failure.

The vulnerability of the SSH daemon in the RouterOS operating system, specifically the hAP lite router, is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the `update_read_cache_bitmap_v3_order` function in the RDP client FreeRDP allows a hacker to trigger a service failure.

The vulnerability of the updatereadcachebitmapv3order function in the RDP client FreeRDP is related to a memory reclamation error. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the command-line interface (CLI) of Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause service interruptions.

The vulnerability of the command-line interface CLI of Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS-based routers of the QFX5000 Series allows a attacker to induce a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS-based QFX5000 Series routers is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to trigger service interruptions...