7 matches found
EUVD-2026-31155
The CSP report endpoint intended to limit logged CSP reports to 1 KB but incorrectly allowed reports up to 1 MB before truncation. On deployments where the endpoint is reachable by untrusted clients, this could allow attackers to generate excessive log volume and contribute to resource exhaustion...
EUVD-2025-35102
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
CVE-2025-61303
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
CVE-2025-61303
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
tornado: Tornado Multipart Form-Data Denial of Service
A flaw was found in Tornado. This vulnerability can lead to a a denial of service by generating an extremely high volume of log entries...
tornado: Tornado Multipart Form-Data Denial of Service
A flaw was found in Tornado. This vulnerability can lead to a a denial of service by generating an extremely high volume of log entries...
tornado: Tornado Multipart Form-Data Denial of Service
A flaw was found in Tornado. This vulnerability can lead to a a denial of service by generating an extremely high volume of log entries...