Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5279 matches found

CVE
CVEadded 2025/07/05 12:0 a.m.51 views

CVE-2025-53605

CVE-2025-53605 affects the Rust protobuf crate prior to 3.7.2. The issue is uncontrolled recursion in protobuf::coded_input_stream::CodedInputStream::skip_group when parsing unknown fields from untrusted input, with impact described as availability-related in the CVSS metrics. Connected advisorie...

5.9CVSS6.5AI score0.00175EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/07/05 12:0 a.m.2 views

CVE-2025-53605

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...

5.9CVSS7.2AI score0.00175EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/07/05 12:0 a.m.5 views

CVE-2025-53605

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...

5.9CVSS0.00175EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2025/07/05 12:0 a.m.6 views

CVE-2025-53605

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...

5.9CVSS5.1AI score0.00175EPSS
Exploits0
CNNVD
CNNVDadded 2025/07/04 12:0 a.m.3 views

protobuf crate 安全漏洞

protobuf crate is a library for Rust by Stepan Koltsov, a personal developer. A security vulnerability exists in protobuf crate versions prior to 3.7.2, which stems from uncontrolled recursion when parsing unknown fields in protobuf::codedinputstream::CodedInputStream::skipgroup...

5.9CVSS6.4AI score0.00175EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/06/28 3:17 p.m.3 views

CVE-2025-6710

MongoDB Server may be susceptible to stack overflow due to JSON parsing mechanism, where specifically crafted JSON inputs may induce unwarranted levels of recursion, resulting in excessive stack space consumption. Such inputs can lead to a stack overflow that causes the server to crash which coul...

7.5CVSS7.5AI score0.00194EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2025/06/26 4:6 p.m.3 views

sqlparse: parsing heavily nested list leads to denial of service

A flaw was found in sqlparse. This issue occurs in a heavily nested list in sqlparse.parse, where a recursion error may be triggered, which can lead to a denial of service...

7.5CVSS5.7AI score0.10881EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/06/26 2:9 p.m.5 views

CVE-2025-6710 Pre-authentication Denial of Service Stack Overflow Vulnerability in JSON Parsing via Excessive Recursion in MongoDB

MongoDB Server may be susceptible to stack overflow due to JSON parsing mechanism, where specifically crafted JSON inputs may induce unwarranted levels of recursion, resulting in excessive stack space consumption. Such inputs can lead to a stack overflow that causes the server to crash which coul...

7.5CVSS7.4AI score0.00194EPSS
Exploits0References1
FreeBSD
FreeBSDadded 2025/06/26 12:0 a.m.4 views

MongoDB -- Pre-authentication Denial of Service Stack Overflow Vulnerability in JSON Parsing via Excessive Recursion in MongoDB

[email protected] reports: MongoDB Server may be susceptible to stack overflow due to JSON parsing mechanism, where specifically crafted JSON inputs may induce unwarranted levels of recursion, resulting in excessive stack space consumption. Such inputs can lead to a stack overflow that causes the...

7.5CVSS7.5AI score0.00194EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/06/26 12:0 a.m.7 views

FreeBSD : MongoDB -- Pre-authentication Denial of Service Stack Overflow Vulnerability in JSON Parsing via Excessive Recursion in MongoDB (59ed4b19-52aa-11f0-b522-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 59ed4b19-52aa-11f0-b522-b42e991fc52e advisory. [email protected] reports: MongoDB Server may be susceptible to stack overflow due to JSON parsing...

7.5CVSS5.6AI score0.00194EPSS
Exploits0References3
OSV
OSVadded 2025/06/18 1:26 a.m.1 views

USN-7575-1 mujs vulnerabilities

It was discovered that MuJS did not correctly handle try/finally statements, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2021-45005 Han Zheng discovered that MuJS did not correctly handle recursion,...

9.8CVSS6.2AI score0.00196EPSS
Exploits2References4
SUSE CVE
SUSE CVEadded 2025/06/17 2:29 a.m.3 views

SUSE CVE-2025-4565

Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashin...

5.9CVSS6.7AI score0.00016EPSS
Exploits0References12
RedhatCVE
RedhatCVEadded 2025/06/16 6:52 p.m.10 views

CVE-2025-4565

A flaw was found in the python protobuf package which can result in a denial of service. Applications that parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages, or a series of SGROUP tags can be corrupted by exceeding the Python recursion...

8.2CVSS7.1AI score0.00016EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2025/06/16 4:26 p.m.9 views

Moderate: Red Hat Security Advisory: wireshark security update

An update for wireshark is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.1AI score0.0005EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2025/06/16 4:2 p.m.16 views

protobuf-python has a potential Denial of Service issue

Summary Any project that uses Protobuf pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. Reporter: Alexis Challande, Trail of Bits...

8.2CVSS7.2AI score0.00016EPSS
Exploits0References8Affected Software1
Snyk
Snykadded 2025/06/16 3:42 p.m.2 views

Uncontrolled Recursion

Overview protobuf is a Google’s data interchange format Affected versions of this package are vulnerable to Uncontrolled Recursion when parsing untrusted Protocol Buffers data containing an excessive number of recursive groups, recursive messages, or a series of SGROUP tags. An attacker can provi...

8.7CVSS6.8AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2025/06/16 3:15 p.m.5 views

CVE-2025-4565

Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashin...

5.3CVSS7.2AI score
Exploits0References1
OSV
OSVadded 2025/06/16 3:15 p.m.2 views

AZL-64116 CVE-2025-4565 affecting package protobuf for versions less than 3.17.3-4

Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashin...

8.2CVSS6.9AI score0.00016EPSS
Exploits0References1
OSV
OSVadded 2025/06/16 3:15 p.m.1 views

AZL-64145 CVE-2025-4565 affecting package protobuf for versions less than 25.3-5

Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashin...

8.2CVSS6.8AI score0.00016EPSS
Exploits0References1
NVD
NVDadded 2025/06/16 3:15 p.m.17 views

CVE-2025-4565

Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashin...

8.2CVSS0.00016EPSS
Exploits0References1
Rows per page
Query Builder