Lucene search
K

478 matches found

OSV
OSV
added 2026/02/18 12:52 a.m.6 views

GHSA-H89V-J3X9-8WQJ OpenClaw affected by denial of service through unguarded archive extraction allowing high expansion/resource abuse (ZIP/TAR)

Summary Archive extraction lacked strict resource budgets, allowing high-expansion ZIP/TAR archives to consume excessive CPU/memory/disk during install/update flows. Affected Packages / Versions - openclaw npm: = 2026.2.13 - clawdbot npm: = 2026.1.24-3 Details Affected component:...

6.7CVSS5.5AI score0.00319EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2026/02/17 4:38 p.m.6 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.5AI score0.00755EPSS
Exploits3References32
RedHat Linux
RedHat Linux
added 2026/02/16 11:56 a.m.5 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.10 views

PT-2026-7570

An uncontrolled resource consumption vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: File Statio...

5.3CVSS5.5AI score0.00534EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/02/10 12:26 a.m.5 views

SUSE CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.5AI score0.00407EPSS
Exploits0References3
NVD
NVD
added 2026/02/09 3:16 p.m.11 views

CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS0.00407EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/09 3:16 p.m.5 views

CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.9AI score0.00407EPSS
Exploits0References3
OSV
OSV
added 2026/02/09 3:16 p.m.2 views

UBUNTU-CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.8AI score0.00407EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/09 2:51 p.m.3 views

CVE-2025-14831 Gnutls: gnutls: denial of service via excessive resource consumption during certificate verification

A flaw was found in GnuTLS. This vulnerability allows a denial of service DoS by excessive CPU Central Processing Unit and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names SANs...

5.3CVSS5.4AI score0.00638EPSS
Exploits1References27
Vulnrichment
Vulnrichment
added 2026/02/09 2:20 p.m.3 views

CVE-2026-0398 Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.5AI score0.00407EPSS
Exploits0References1
CVE
CVE
added 2026/02/09 2:20 p.m.13 views

CVE-2026-0398

PowerDNS Recursor is affected by CVE-2026-0398. The issue involves crafted DNS zones that can cause increased resource usage and crafted CNAME chains that can lead to cache poisoning in the Recursor. The available documents do not specify affected versions, exact root cause in code paths, or offi...

5.3CVSS5.5AI score0.00407EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/09 2:20 p.m.5 views

CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.5AI score0.00407EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/02/09 2:20 p.m.30 views

CVE-2026-0398 Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS0.00407EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/09 2:20 p.m.5 views

CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.2AI score0.00407EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/09 2:20 p.m.4 views

CVE-2026-0398

Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor...

5.3CVSS5.4AI score0.00407EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.10 views

PowerDNS Recursor(pdns_recursor) 安全漏洞

PowerDNS Recursor pdnsrecursor is a domain name resolution server developed by the Dutch company PowerDNS. PowerDNS Recursor has security vulnerabilities; these vulnerabilities stem from custom zones, which may lead to increased resource usage, and custom CNAME chains, which may cause cache...

5.3CVSS5.8AI score0.00407EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/05 9:42 a.m.3 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References6
Snyk
Snyk
added 2026/02/04 10:2 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview @isaacs/brace-expansion is a Brace expansion as known from sh/bash Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to unbounded brace range expansion. An attacker can cause excessive CPU and memory consumption, potentially...

9.2CVSS5.5AI score0.00481EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/03 9:45 a.m.8 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/02/03 7:28 a.m.3 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS5.9AI score0.00633EPSS
Exploits0References6
Rows per page
Query Builder