59 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drivers/perf: Fixed the issue with clearing the interrupt status in the alidrwpmu driver. The alibabauncorepmu driver forgot to clear all interrupt statuses during interrupt processing. After the PMU counter overflow interrupt...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Preventing interrupt storms due to Host Controller Errors HCE The xHCI controller reports a Host Controller Error HCE in UAS Storage during device plug/unplug scenarios on Android devices. HCE is checked in the xhciirq...
PT-2026-31892
Name of the Vulnerable Software and Affected Versions Apache ActiveMQ Client versions before 5.19.4, from 6.0.0 through 6.2.3 Apache ActiveMQ Broker versions before 5.19.4, from 6.0.0 through 6.2.3 Apache ActiveMQ versions before 5.19.4, from 6.0.0 through 6.2.3 Description A denial of service...
EUVD-2026-18641
In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: Fix interrupt storm after receiving bad ifid in IRQ handler Commit 31a7a0bbeb00 "dpaa2-switch: add bounds check for ifid in IRQ handler" introduces a range check for ifid to avoid an out-of-bounds access. If an...
Rockwell Automation ArmorStart LT Denial of Service Vulnerability (CNVD-2026-10852)
Rockwell Automation ArmorStart LT is a distributed motor controller from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation ArmorStart LT, which originates from an unexpected reboot of the device during execution of the Achilles EtherNet/IP Step Limits Storms...
CVE-2025-9283
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...
CVE-2025-9283
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...
CVE-2025-9283 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...
CVE-2025-9283
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...
CVE-2025-9283 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...
CVE-2025-9283
CVE-2025-9283 affects ArmorStart® LT. The vulnerability is a denial-of-service condition triggered during the Achilles EtherNet/IP Step Limits Storms tests, where the device reboots unexpectedly and the Link State Monitor goes down for several seconds. The Connected documents corroborate the same...
CVE-2025-9281
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles Comprehensive step limit storm tests, the device reboots...
CVE-2025-9281
ArmorStart® LT is affected by multiple denial-of-service vulnerabilities triggered during Achilles Comprehensive step limit storm tests and related fuzzing/grammar tests (e.g., step limit storms, comprehensive storm tests, and related CIP/EtherNet/IP fuzzing). The issues, observed as device reboo...
PT-2026-3566
Name of the Vulnerable Software and Affected Versions ArmorStart® LT affected versions not specified Description A security issue can lead to a denial-of-service condition. During the execution of the Achilles EtherNet/IP Step Limits Storms tests, the device unexpectedly reboots, causing the Link...
CVE-2025-69230 AIOHTTP Vulnerable to Cookie Parser Warning Storm
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid cookies can lead to a logging storm. If the cookies attribute is accessed in an application, then an attacker may be able to trigger a storm of warning-level logs...
CVE-2025-69230
CVE-2025-69230 affects the AIOHTTP project (async HTTP client/server for asyncio and Python). In versions 3.13.2 and earlier, reading multiple invalid cookies can trigger a storm of warning-level logs when a malicious Cookie header is crafted. The issue is fixed in version 3.13.3. Impact is descr...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987367)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987367 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: pciehp: Fix infinite loop in IRQ handler upon power fault The Power Fault Detected bit in th...
CVE-2025-20340
A vulnerability in the Address Resolution Protocol ARP implementation of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to trigger a broadcast storm, leading to a denial of service DoS condition on an affected device. This vulnerability is due to how Cisco IOS XR Software...
UBUNTU-CVE-2025-58066
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. In versions between 1.2.0 and 1.6.1 inclusive servers which allow non-NTS traffic are affected by a denial of service vulnerability, where an attacker can induce a message storm between two NTP...
CVE-2025-58066
CVE-2025-58066 affects ntpd-rs versions 1.2.0–1.6.1 (server side with non‑NTS traffic). An attacker can induce a message storm between two NTP servers running ntpd-rs, enabling a denial of service. Client‑only configurations are not affected. The advisory recommends upgrading to version 1.6.2, wh...