deskflow 资源管理错误漏洞

Deskflow is an open-source tool for sharing keyboards and mice across devices. Versions of Deskflow prior to 1.26.0.167 contained a resource management vulnerability. This vulnerability arises from a fatal error branch that occurs when the TLS handshake fails, causing SecureSocket::secureAccept t...

Apache Neethi 资源管理错误漏洞

Apache Neethi is a policy processing framework library developed by the Apache Foundation. There is a resource management vulnerability in Apache Neethi, which stems from the algorithmic complexity involved in policy normalization. This vulnerability may cause specially crafted WS-Policy document...

facil.io 资源管理错误漏洞

facil.io is a C-language high-performance web application microframework developed by Bo’s individual developer. Facil.io has a resource management vulnerability; this vulnerability arises when fiojsonparse enters an infinite loop upon encountering nested JSON values that start with “i” or “I”,...

Podman Desktop 资源管理错误漏洞

Podman Desktop is an open-source container management tool developed by podman-desktop. Versions of Podman Desktop prior to 1.26.2 contained a resource management vulnerability. This vulnerability stemmed from an unverified HTTP server that lacked connection limits and timeout mechanisms, which...

libfuse 资源管理错误漏洞

libfuse is an open-source user-space file system development library developed by libfuse. Versions of libfuse 3.18.0 to 3.18.2 contained a resource management vulnerability. This vulnerability stemmed from issues with the iouring subsystem, where objects were reclaimed and then reused, potential...

FreeRDP 资源管理错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.22.0 contained a resource management vulnerability. This vulnerability stemmed from videotimer sending client notifications after the control channel was closed, which...

EUVD-2025-32356

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We hav...

Lunary 资源管理错误漏洞

Lunary is Lunary open source a production toolkit for LLM . A security vulnerability exists in Lunary version 105a3f6 that originates from allowing users to upload and execute arbitrary regular expressions, which can be exploited by an attacker to potentially cause a regular expression denial of...

NewStart CGSL MAIN 6.02 : perl-HTTP-Tiny Multiple Vulnerabilities (NS-SA-2024-0058)

The remote NewStart CGSL host, running version MAIN 6.02, has perl-HTTP-Tiny packages installed that are affected by multiple vulnerabilities: - It was found that perl can load modules from the current directory if not found in the module directories, via the @INC path. A local, authenticated...

Siemens SCALANCE Series 资源管理错误漏洞

The SCALANCE X-204RNA Industrial Ethernet Access Point enables non-PRP end devices to connect to separate parallel networks where required. An uncontrolled resource consumption vulnerability exists in Siemens SCALANCE X-200RNA Switch Devices, which can be exploited by an attacker to cause a denia...