Lucene search
K

6 matches found

Snyk
Snyk
added 2026/04/09 4:14 p.m.10 views

Allocation of Resources Without Limits or Throttling

Overview kibana is an open source Apache Licensed, browser-based analytics and search dashboard for Elasticsearch. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the automatic import plugin. An attacker can cause backend services to...

7.1CVSS5.7AI score0.0024EPSS
Exploits0References2
CVE
CVE
added 2025/12/16 9:31 p.m.11 views

CVE-2025-14466

The CVE affects Güralp Fortimus/Minimus/Certimus series web interfaces. An unauthenticated attacker with network access can send specially crafted HTTP requests that cause the web service process to restart, producing a brief denial-of-service during restart. Public documents do not specify techn...

6.9CVSS6.6AI score0.0034EPSS
Exploits0References2
Snyk
Snyk
added 2025/11/10 10:43 p.m.3 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the WriteRelationships function when the exclusion operator is used in the authorization schema and the server is configured with --write-relationships-max-updates-per-call greater...

6.9CVSS6.4AI score0.0022EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/27 7:33 p.m.4 views

CVE-2025-4225 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 14.1 before 18.1.5, 18.2 before 18.2.5, and 18.3 before 18.3.1 that that under certain conditions could have allowed an unauthenticated attacker to cause a denial-of-service condition affecting all users by sending specially...

5.3CVSS6.8AI score0.00346EPSS
Exploits0References2
Snyk
Snyk
added 2025/05/15 2:5 p.m.2 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the EndBlocker process. An attacker can cause the system to halt by triggering an integer overflow during the cumulative reward ratio calculation. Remediation Upgrade...

8.2CVSS7.2AI score
Exploits0References3
CVE
CVE
added 2025/01/14 2:9 p.m.75 views

CVE-2024-46666

CVE-2024-46666 affects FortiOS (various 7.x and 6.4) with an CWE-770 resource allocation issue that can allow a remote unauthenticated attacker to block GUI access via crafted requests to specific endpoints. The CVSSv3.1 base score is 5.3 (Medium), with network attack vector and no user interacti...

5.3CVSS5.3AI score0.00668EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder