GHSA-H3M7-RQC4-7H9P Integer overflow in chunking helper causes dispatching to miss elements or panic

Any SpiceDB cluster with any schema where a resource being checked has more than 65535 relationships for the same resource and subject type is affected by this problem. The issue may also lead to a panic rendering the server unavailable The following API methods are affected: - CheckPermission -...

Denial Of Service (DoS)

juzaweb/cms is vulnerable to Denial Of Service DoS. The vulnerability is caused due to an improper validation of the timezone field, which allows an attacker to send a crafted request resulting in the server becoming unavailable...

Denial Of Service (DoS)

knative.dev/eventing-gitlab is vulnerable to Denial of Service DoS. The vulnerability is due to improper enforcement of the ReadHeaderTimeout which is used to timeout individual read operations in receiveadapter.go. This can lead to a Denial Of Service, making the server unavailable to other user...

503 Error record in event log when try to login Storefront

"Unable to complete your request" error when logging into the Storefront. The operating system event log may record a 503 error as below. LogName: Citrix Delivery Service Source Name: Citrix Receiver for Web Event id: 1 Log Description The remote server returned an error: 503 Server Unavailable...

CVE-2023-5330

Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing an attacker to send a specially crafted request to the /api/v4/opengraph filling the cache and turning the server unavailable...

CVE-2023-5330 Denial of Service via Opengraph Data Cache

Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing an attacker to send a specially crafted request to the /api/v4/opengraph filling the cache and turning the server unavailable...

Nextcloud Calendar 安全漏洞

Nextcloud is an open source suite of self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Calendar v4.2.2 and earlier, v3.5.4 and earlier, which stems from the disclosure of certain internal paths to ...

Denial of Service Vulnerability in wzdftpd

wzdftpd is a portable, modular and efficient ftp server with support for SSL, IPv6, UTF-8 compatibility, multithreading, modules, external scripts. A denial of service vulnerability exists in wzdftpd, which can be exploited by an attacker to cause the server to deny service...

Microsoft Office SharePoint Server 2016 - Denial of Service (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'sharepoint-ruby' class MetasploitModule 'DOS Vulnerability in SharePoint 2016 Server', 'Description' = %q A vulnerability in Microsoft SharePoint Server could...

CVE-2018-7833

An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where an unauthenticated user can send a specially crafted XML data via a POST request to cause the web server to become unavailable...

Denial Of Service (DoS)

zookeeper is vulnerable to denial of service DoS attacks. The vulnerability is possible because the pRequest method in PrepRequestProcessor.java allows an attacker to generate a proposal from a request that is larger than the maxbuffer . This is possible because it does not check the size of the...

CVE-2013-0167

VDSM in Red Hat Enterprise Virtualization 3 and 3.2 allows privileged guest users to cause the host to become "unavailable to the managment server" via guestInfo dictionaries with "unexpected fields."...