Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/02/10 8:17 a.m.10 views

Security Bulletin: IBM Event Streams is vulnerable to a denial of service (CVE-2025-2240)

Summary IBM Event Streams is vulnerable to a denial of service due to an out‑of‑memory condition in smallrye-fault-tolerance. Vulnerability Details CVEID:CVE-2025-2240 DESCRIPTION: A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This...

7.5CVSS5.4AI score0.00908EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2025/04/02 8:19 p.m.5 views

smallrye-fault-tolerance: SmallRye Fault Tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS5.7AI score0.00908EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/04/02 4:48 p.m.4 views

smallrye-fault-tolerance: SmallRye Fault Tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS5.7AI score0.00908EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/04/02 1:6 p.m.4 views

smallrye-fault-tolerance: SmallRye Fault Tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS5.7AI score0.00908EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/04/02 1:6 p.m.19 views

Important: Red Hat Security Advisory: Red Hat build of Quarkus 3.15.4 release and security update

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability. For more informatio...

7.5CVSS7.1AI score0.00908EPSS
Exploits0References63
Veracode
Veracode
added 2025/03/18 7:50 a.m.14 views

Out-of-Memory (OOM)

io.smallrye, smallrye-fault-tolerance-core is vulnerable to an out-of-memory OOM. The vulnerability is due to uncontrolled object creation in meterMap when calling the metrics URI, allowing an attacker to trigger excessive memory consumption and cause a denial of service DoS condition...

7.5CVSS6.5AI score0.00908EPSS
Exploits0References11Affected Software1
vulnersOsv
vulnersOsv
added 2025/03/12 3:44 p.m.9 views

com.abavilla:fpi-bot-api (>=1.6.0 <=1.8.5), com.abavilla:fpi-bot-api-parent (>=1.6.0 <=1.8.5) +204 more potentially affected by CVE-2025-2240 via io.smallrye:smallrye-fault-tolerance-core (>=6.0.0-RC1 <=6.8.0)

io.smallrye:smallrye-fault-tolerance-core MAVEN version =6.0.0-RC1, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.0.25, =1.0.25, =1.5.0, =1.5.0, =1.3.1, =1.3.1, =1.3.4, =1.3.13 and more Source cves: CVE-2025-2240 Source advisory: SNYK:JAVA-IOSMALLRYE-9460816...

7.5CVSS7AI score0.00908EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/03/12 3:32 p.m.8 views

com.qwlabs.doraemon:task-queue (>=0.3.38 <=0.3.54), hu.icellmobilsoft.reactive.messaging.redisstream:quarkus-reactive-messaging-redisstream-extension-sample (>=1.0.4 <=1.3.0) +34 more potentially affected by CVE-2025-2240 via io.smallrye:smallrye-fault-tolerance-core (>=6.5.0 <=6.8.0)

io.smallrye:smallrye-fault-tolerance-core MAVEN version =6.5.0, =0.3.38, =1.0.4, =0.38.0, =3.16.0, =3.20.0.CR1 and more Source cves: CVE-2025-2240 Source advisory: OSV:GHSA-GFH6-3PQW-X2J4https://...

7.5CVSS7.1AI score0.00908EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/03/12 3:32 p.m.9 views

com.qwlabs.doraemon:task-queue (>=0.3.0 <=0.3.37), io.apicurio:apicurio-registry-app (>=3.0.4 <=3.0.6) +94 more potentially affected by CVE-2025-2240 via io.smallrye:smallrye-fault-tolerance-core (>=6.3.0 <=6.4.1)

io.smallrye:smallrye-fault-tolerance-core MAVEN version =6.3.0, =0.3.0, =3.0.4, =3.0.4, =3.0.4, =3.0.4, =0.34.0, =4.0.2, =4.0.2, =4.0.2, =3.10.0, =3.10.0, =6.3.0, =6.3.0, =6.3.0, =6.3.0, =6.4.1 and more Source cves: CVE-2025-2240 Source advisory:...

7.5CVSS7AI score0.00908EPSS
Exploits0
OSV
OSV
added 2025/03/12 3:32 p.m.2 views

GHSA-GFH6-3PQW-X2J4 SmallRye Fault Tolerance out-of-memory (OOM) issue

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS7AI score0.00908EPSS
Exploits0References11
Github Security Blog
Github Security Blog
added 2025/03/12 3:32 p.m.18 views

SmallRye Fault Tolerance out-of-memory (OOM) issue

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS6.6AI score0.00908EPSS
Exploits0References11Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/12 2:55 p.m.6 views

CVE-2025-2240 Smallrye-fault-tolerance: smallrye fault tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS6.5AI score0.00908EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/03/12 2:55 p.m.17 views

CVE-2025-2240 Smallrye-fault-tolerance: smallrye fault tolerance

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS0.00908EPSS
Exploits0References6
Rows per page
Query Builder