Lucene search
+L

19 matches found

osv
osv
added 2026/06/12 9:6 a.m.1 views

CVE-2026-50645 Apache CXF: No restriction on attachment headers per message

There is no restriction on the amount of attachment headers that a message can contain when being deserialized by Apache CXF, which can lead to uncontrolled resource consumption or a denial of service attack. Users are recommended to upgrade to versions 4.2.2 or 4.1.7, which fix this issue by...

7.5CVSS6AI score0.0046EPSS
Exploits0References5
astralinux
astralinux
added 2026/03/03 9:29 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipmi: Revised the handling of user message limits. The limit on the number of user messages had several issues; improper counting occurred in some cases, and there were issues with operations after memory allocation. The process...

6.1AI score0.00183EPSS
Exploits0References3
mscve
mscve
added 2025/11/14 9:3 a.m.8 views

ipmi: Rework user message limit handling

...

5.5CVSS7AI score0.00183EPSS
Exploits0
susecve
susecve
added 2025/11/14 12:23 a.m.4 views

SUSE CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.5CVSS6.4AI score0.00183EPSS
Exploits0References21
euvd
euvd
added 2025/11/13 12:30 a.m.4 views

EUVD-2025-150372

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.7AI score0.00183EPSS
Exploits0References6
nvd
nvd
added 2025/11/12 10:15 p.m.3 views

CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

0.00183EPSS
Exploits0References5
osv
osv
added 2025/11/12 10:15 p.m.6 views

AZL-70115 CVE-2025-40202 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.6AI score0.00183EPSS
Exploits0References1
osv
osv
added 2025/11/12 10:15 p.m.4 views

DEBIAN-CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.2AI score0.00183EPSS
Exploits0References1
osv
osv
added 2025/11/12 10:15 p.m.5 views

UBUNTU-CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.7AI score0.00183EPSS
Exploits0References12
cve
cve
added 2025/11/12 9:56 p.m.20 views

CVE-2025-40202

The CVE-2025-40202 entry concerns a Linux kernel vulnerability in ipmi message limit handling. The issue involves improper counting of the number of user messages and a use-after-free scenario, addressed by restructuring the receive message allocation routine so refcounting and user message limit...

5.8AI score0.00183EPSS
Exploits0References5
cvelist
cvelist
added 2025/11/12 9:56 p.m.9 views

CVE-2025-40202 ipmi: Rework user message limit handling

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

0.00183EPSS
Exploits0References5
debiancve
debiancve
added 2025/11/12 9:56 p.m.4 views

CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.2AI score0.00183EPSS
Exploits0
osv
osv
added 2025/11/12 9:56 p.m.5 views

CVE-2025-40202 ipmi: Rework user message limit handling

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

6.1AI score0.00183EPSS
Exploits0References8
osv
osv
added 2025/10/10 2:27 p.m.6 views

JLSEC-2025-18 An issue was discovered in dbus >= 1.3.0 before 1.12.18

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

5.5CVSS6.6AI score0.00569EPSS
Exploits1References10
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-4198

Malware in sbrugna...

7.8CVSS6.4AI score0.01966EPSS
Exploits1References6
redhat
redhat
added 2020/08/04 7:41 a.m.2 views

dbus: denial of service via file descriptor leak

An uncontrolled resource consumption vulnerability was discovered in D-Bus. The DBusServer leaks file descriptors when a message exceeds the per-message file descriptor limit. This flaw allows a local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket, ...

5.5CVSS7.1AI score0.00569EPSS
Exploits1References4
redhat
redhat
added 2020/07/21 11:10 a.m.4 views

dbus: denial of service via file descriptor leak

An uncontrolled resource consumption vulnerability was discovered in D-Bus. The DBusServer leaks file descriptors when a message exceeds the per-message file descriptor limit. This flaw allows a local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket, ...

5.5CVSS7.1AI score0.00569EPSS
Exploits1References4
osv
osv
added 2020/06/08 5:15 p.m.2 views

ALPINE-CVE-2020-12049

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

5.5CVSS6.6AI score0.00569EPSS
Exploits1References1
osv
osv
added 2020/06/08 5:15 p.m.2 views

DEBIAN-CVE-2020-12049

An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AFUNIX socket...

5.5CVSS6.5AI score0.00569EPSS
Exploits1References1
Rows per page
Query Builder