ROS-20260605-73-0057

Vulnerability of the Audio/Video component: Playback in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a remote attacker to cause service failures...

ROS-20260605-73-0049

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient testing for unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the SIEM system testing tool Kraken Stress Testing Toolkit lies in its uncontrolled resource consumption, which allows a malicious actor to trigger a service failure.

The vulnerability of the SIEM systems’ load testing tools, such as the Kraken Stress Testing Toolkit, is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerabilities of Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM), which are microprogramming software solutions for Intel processors and chipsets, allow attackers to trigger system failures.

The vulnerabilities of Intel Active Management Technology AMT and Intel Standard Manageability ISM, which are microprogramming-based technologies for Intel processors and chipsets, are related to insufficient validation of input data. Exploiting these vulnerabilities can allow a remote attacker t...

The vulnerability of the command line of Juniper Networks Junos OS models SRX1500, SRX4100, and SRX4200, related to insufficient handling of exceptional states, allows a attacker to trigger a service failure.

The vulnerability of the command line interface of Juniper Networks Junos OS models SRX1500, SRX4100, and SRX4200 is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger service failures remotely...

The vulnerability of the Consul and Consul Enterprise service configuration tool lies in the premature release of resources during the expected lifespan of the service. This allows a perpetrator to trigger a service failure.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to an error that allows a one-node cluster with a service named the same as the local service to potentially compromise the Consul system. Exploiting this vulnerability could enable a malicious actor to...

The vulnerability of the Safe Browsing service in Google Chrome and Microsoft Edge browsers allows a hacker to trigger a service failure.

The vulnerability of Google Chrome and Microsoft Edge browsers’ Safe Browsing service is related to insufficient validation of entered data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Web Services Dynamic Discovery (WS-Discovery) protocol in Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Web Services Dynamic Discovery WS-Discovery protocol in Windows operating systems is related to improper handling of the absence of a specific element. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of embedded software developed by Qualcomm, related to deficiencies in the use of the assert() function, allows attackers to trigger a service failure.

The vulnerability of embedded software developed for Qualcomm chips lies in the improper implementation of the channel bandwidth division mechanism and the switching between subbands when performing Beam Switching. This occurs due to the use of the assert function. Exploiting this vulnerability c...

The vulnerability of the input[url] function in the application development environment and the Angular platform allows attackers to trigger a service failure.

The vulnerability of the inputurl function in the application development environment and the Angular platform is related to the use of a regular expression with inefficient computational complexity. Exploiting this vulnerability could allow an attacker to cause service failures remotely...

The vulnerability of the microprogrammed software of Zyxel series XGS2220, XMG1930, and XS1930 switches lies in the insufficient handling of exceptional states, which allows attackers to trigger service failures.

The vulnerability of the microprogrammed software of Zyxel’s XGS2220, XMG1930, and XS1930 series switches is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Microsoft Message Queuing (MSMQ) service on Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to insufficient input validation. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the Utility component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a perpetrator to trigger a service failure.

The vulnerability of the Utility component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the JSE component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to induce a service failure.

The vulnerability of the JSE component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability in operating systems such as MacOS, iOS, tvOS, iPadOS, and watchOS, related to uncontrolled resource consumption during certificate processing, allows attackers to trigger service failures.

The vulnerability of operating systems such as MacOS, iOS, tvOS, iPadOS, and watchOS is related to an uncontrolled consumption of resources during the processing of certificates. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Safe Browsing service in Google Chrome and Microsoft Edge browsers allows a malicious actor to trigger a service failure.

The vulnerability of Google Chrome and Microsoft Edge browsers’ Safe Browsing service is related to insufficient validation of entered data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the SAP Business One resource management system, related to errors in XML references to external objects (XXE), allows attackers to trigger service failures.

The vulnerability of the SAP Business One resource management system is related to errors in XML references to external objects XXE. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS-based routers of the QFX5000 Series and MX Series models is related to pointer arithmetic errors. This vulnerability allows attackers to trigger a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS-based routers of the QFX5000 Series and MX Series models is related to pointer arithmetic errors. Exploiting this vulnerability allows a malicious actor to trigger service failures remotely...

The vulnerability of Siemens’ software and hardware-based TCP services, which allows attackers to trigger service failures.

The vulnerability of Siemens’ software and hardware TCP services is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the application deployment automation tool in Kubernetes ArgoCD, related to uncontrolled resource consumption, allows a malicious actor to trigger service failures.

The vulnerability of the application deployment automation tool in Kubernetes ArgoCD is related to an uncontrolled resource consumption. Exploiting this vulnerability allows a malicious actor to trigger service failures remotely...