Lucene search
K

34 matches found

RedHat Linux
RedHat Linux
added 2026/02/12 3:15 p.m.5 views

kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid

A flaw null pointer dereference in the Linux kernel NFS functionality was found in the way client does some specific action for existing NFS connection. A client user could use this flaw to crash the server system...

5.8AI score0.00177EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-52481

Malicious code in bioql PyPI...

2.7CVSS4AI score0.00585EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-7909

Malicious code in bioql PyPI...

4.4CVSS5AI score0.00258EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35192

Malicious code in bioql PyPI...

8.6CVSS7.6AI score0.00848EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/02 4:58 p.m.17 views

CVE-2025-11149

This affects all versions of the package node-static; all versions of the package @nubosoftware/node-static. The package fails to catch an exception when user input includes null bytes. This allows attackers to access http://host/%00 and crash the server. Mitigation Mitigation for this issue is...

7.5CVSS6.4AI score0.00489EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-20969

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior...

5.5CVSS5.8AI score0.00839EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-10576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Janus through 0.9.1. plugins/janusvoicemail.c in the VoiceMail plugin has a race condition that could cause a server crash...

5.9CVSS6.3AI score0.00649EPSS
Exploits0References2
CVE
CVE
added 2025/07/07 2:44 p.m.43 views

CVE-2025-6712

MongoDB Server (MongoDB Server v8.0.x prior to 8.0.10) is affected by a DoS risk due to high memory usage. The issue stems from inefficient memory management in internal operations, where certain internal processes persisting longer than expected can cause memory consumption to spike, potentially...

6.5CVSS6.4AI score0.00276EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2025/07/07 2:31 a.m.4 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash...

6.1CVSS5.7AI score0.00285EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.4 views

CVE-2024-24988

Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...

6.5CVSS6.7AI score0.0068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:44 p.m.8 views

CVE-2020-14260

HCL Domino is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit could enable an attacker to crash Domino or execute attacker-controlled code on the server system...

10CVSS7.2AI score0.01439EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/08 8:39 p.m.17 views

CVE-2025-0649

Incorrect JSON input stringification in Google's Tensorflow serving versions up to 2.18.0 allows for potentially unbounded recursion leading to server crash...

8.9CVSS6.9AI score0.00182EPSS
Exploits0References1
OSV
OSV
added 2025/04/22 7:7 a.m.2 views

CVE-2025-26413 Apache Kvrocks: The server was crashed by the negative offset

Improper Input Validation vulnerability in Apache Kvrocks. The SETRANGE command didn't check if the offset input is a positive integer and use it as an index of a string. So it will cause the server to crash due to its index is out of range. This issue affects Apache Kvrocks: through 2.11.1. User...

7.5CVSS5.9AI score0.00612EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2017-12185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly...

9.8CVSS7.5AI score0.04167EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/12 6:16 p.m.19 views

CVE-2025-25205 Remote Authentication-Bypass can lead to server crash or limited information disclosure due to faulty pattern matching

Audiobookshelf is a self-hosted audiobook and podcast server. Starting in version 2.17.0 and prior to version 2.19.1, a flaw in the authentication bypass logic allows unauthenticated requests to match certain unanchored regex patterns in the URL. Attackers can craft URLs containing substrings lik...

8.2CVSS8.3AI score0.03834EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: httpd (CVE-2024-36387)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36387 advisory. - Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference,...

5.4CVSS6.9AI score0.01715EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 11:59 p.m.8 views

CVE-2022-29215

RegionProtect is a plugin that allows users to manage certain events in certain regions of the world. Versions prior to 1.1.0 contain a YAML injection vulnerability that can cause an instant server crash if the passed arguments are not matched. Version 1.1.0 contains a patch for this issue. As a...

7.5CVSS6.9AI score0.01092EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 7:14 a.m.7 views

BIT-MATTERMOST-2024-24988

Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...

6.5CVSS5.1AI score0.0068EPSS
Exploits0References2
OSV
OSV
added 2024/02/29 8:6 a.m.5 views

CVE-2024-24988 Excessive resource consumption when sending long emoji names in user custom status

Mattermost fails to properly validate the length of the emoji value in the custom user status, allowing an attacker to send multiple times a very long string as an emoji value causing high resource consumption and possibly crashing the server...

4.3CVSS6.2AI score0.0068EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/14 12:0 a.m.9 views

PT-2023-32994 · Unknown · Pocketmine

Name of the Vulnerable Software and Affected Versions: PocketMine versions prior to 4.22.3 PocketMine versions prior to 5.2.1 Description: A player can cause the server to crash by sending a packet with incorrect sign data in NBT in the BlockActorDataPacket. This can be achieved by sending an NBT...

7.5CVSS7AI score
Exploits0References4
Rows per page
Query Builder