CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

315 matches found

Vulnrichment•added 2025/12/18 12:0 a.m.•2 views

CVE-2025-65563

A denial-of-service vulnerability exists in the omec-project UPF component upf-epc/pfcpiface up to at least version upf-epc-pfcpiface:2.1.3-dev. When the UPF receives a PFCP Association Setup Request that is missing the mandatory NodeID Information Element, the association setup handler...

6.4AI score0.00092EPSS

Exploits1References2

Vulnrichment•added 2025/12/18 12:0 a.m.•2 views

CVE-2025-65565

A denial-of-service vulnerability exists in the omec-project UPF pfcpiface component in version upf-epc-pfcpiface:2.1.3-dev. After PFCP association is established, a PFCP Session Establishment Request that is missing the mandatory F-SEID CPF-SEID Information Element is not properly validated. The...

6.4AI score0.00092EPSS

Exploits1References1

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52289

Name of the Vulnerable Software and Affected Versions omec-project UPF version 2.1.3-dev Description A denial-of-service issue exists in the omec-project UPF pfcpiface component. Specifically, when a PFCP Session Establishment Request is sent to the UPF’s N4/PFCP endpoint without the mandatory...

7.5CVSS6.5AI score0.00092EPSS

Exploits1References4

RedhatCVE•added 2025/12/17 10:8 p.m.•2 views

CVE-2025-68274

SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's NewResponseFromRequest function that affects all normal SIP operations. The vulnerability allows remote...

8.7CVSS7.1AI score0.00631EPSS

Exploits1References1

NVD•added 2025/12/16 10:15 p.m.•3 views

CVE-2025-68274

8.7CVSS0.00631EPSS

Exploits1References2

Vulnrichment•added 2025/12/16 10:2 p.m.•1 views

CVE-2025-68274 SIPGO library has response DoS vulnerability via nil pointer dereference

8.7CVSS6.8AI score0.00631EPSS

Exploits1References2

EUVD•added 2025/12/16 10:2 p.m.•0 views

EUVD-2025-203854

8.7CVSS6.6AI score0.00631EPSS

Exploits1References2

Cvelist•added 2025/12/16 10:2 p.m.•16 views

CVE-2025-68274 SIPGO library has response DoS vulnerability via nil pointer dereference

8.7CVSS0.00631EPSS

Exploits1References2

OSV•added 2025/12/16 10:2 p.m.•2 views

CVE-2025-68274 SIPGO library has response DoS vulnerability via nil pointer dereference

8.7CVSS7AI score0.00631EPSS

Exploits1References4

CVE•added 2025/12/16 10:2 p.m.•9 views

CVE-2025-68274

CVE-2025-68274 describes a nil pointer dereference in the SIPGO library when building SIP responses with NewResponseFromRequest, triggered if the incoming SIP request is missing a To header. The issue can cause a remote attacker to crash SIP applications that use this function, effectively a deni...

8.7CVSS6.8AI score0.00631EPSS

Exploits1References2Affected Software1

OSV•added 2025/12/16 9:24 p.m.•2 views

GHSA-C623-F998-8HHV SIPGO is Vulnerable to Response DoS via Nil Pointer Dereference

Description A nil pointer dereference vulnerability was discovered in the SIPGO library's NewResponseFromRequest function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. T...

8.7CVSS6.9AI score0.00631EPSS

Exploits1References4

Github Security Blog•added 2025/12/16 9:24 p.m.•5 views

SIPGO is Vulnerable to Response DoS via Nil Pointer Dereference

8.7CVSS7AI score0.00631EPSS

Exploits1References4Affected Software1

EUVD•added 2025/12/16 9:24 p.m.•1 views

EUVD-2025-203844

SIPGO is Vulnerable to Response DoS via Nil Pointer Dereference...

6.4AI score

Exploits0References3

Positive Technologies•added 2025/12/16 12:0 a.m.•1 views

PT-2025-51791

8.7CVSS7.1AI score0.00631EPSS

Exploits1References5

Snyk•added 2025/12/08 10:20 p.m.•1 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference affecting VerifyVoteExtension and vote verification functions. An attacker can cause intermittent validator panics and disrupt consensus operations by submitting a VoteExtension message with the blockhash field...

8.7CVSS7AI score

Exploits0References2

Snyk•added 2025/12/08 10:20 p.m.•1 views

NULL Pointer Dereference

8.7CVSS7AI score

Exploits0References2

OSV•added 2025/12/08 10:20 p.m.•2 views

GHSA-M6WQ-66P2-C8PC Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers

Summary A vulnerability exists in Babylon’s BLS vote extension processing where a malicious active validator can submit a VoteExtension with the blockhash field omitted from the protobuf serialization. Because protobuf fields are optional, unmarshalling succeeds but leaves BlockHash as nil. Babyl...

8.7CVSS7.1AI score

Exploits0References3

Github Security Blog•added 2025/12/08 10:20 p.m.•4 views

Babylon Nil BlockHash in BLS vote extensions triggers panics in consensus handlers

7.2AI score

Exploits0References3Affected Software4

OSV•added 2025/12/02 7:46 p.m.•2 views

GO-2025-4163 NSSF panic due to nil pointer dereference when expiry field is omitted in NSSAIAvailability POST in github.com/free5gc/nssf

NSSF panic due to nil pointer dereference when expiry field is omitted in NSSAIAvailability POST in github.com/free5gc/nssf...

7.5CVSS6.8AI score0.00151EPSS

Exploits1References5

OSV•added 2025/11/28 8:19 a.m.•0 views

SUSE-SU-2025:21093-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2025-23145: mptcp: fix NULL pointer in canacceptnewsubflow bsc1242882 - CVE-2024-53141: netfilter: ipset: add missing range check in bitmapipuadt bsc1245778 - CVE-2025-38500: xfrm: interface: fix use-after-free...

7.8CVSS6.8AI score0.00066EPSS

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by