Lucene search
+L

8 matches found

OSV
OSV
added 2026/06/01 7:57 a.m.3 views

CVE-2026-49361 Apache Fluss Netty Frame Decoder Memory Exhaustion Vulnerability

Apache Fluss versions prior to 0.9.1 configure the Netty LengthFieldBasedFrameDecoder with Integer.MAXVALUE as the maximum frame length, allowing unauthenticated remote attackers to exhaust JVM heap memory on TabletServer and CoordinatorServer by sending specially crafted frame headers, resulting...

7.5CVSS6AI score0.0058EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24148

Malicious code in bioql PyPI...

4.1CVSS6.6AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/11 5:36 p.m.13 views

CVE-2025-8865

A null pointer dereference flaw has been discovered in YugabyteDB. An authenticated attacker could exploit this to crash the YCQL tablet server, resulting in a denial of service. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Ha...

4.1CVSS6.9AI score0.00161EPSS
Exploits0References4
NVD
NVD
added 2025/08/11 3:15 p.m.5 views

CVE-2025-8865

The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...

4.1CVSS0.00161EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/11 2:19 p.m.12 views

CVE-2025-8865

The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...

4.1CVSS0.00161EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/11 2:19 p.m.3 views

CVE-2025-8865

The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...

4.1CVSS6.9AI score0.00161EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 2:19 p.m.16 views

CVE-2025-8865

The CVE-2025-8865 issue affects YugabyteDB’s YCQL tablet server. A flaw in YCQL query handling can trigger a null pointer dereference when processing certain malformed inputs, allowing an authenticated attacker to crash the YCQL tablet server and cause a denial of service. Exploitation is describ...

4.1CVSS6.9AI score0.00161EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/11 12:0 a.m.7 views

PT-2025-32549 · Yugabyte · Yugabytedb

Name of the Vulnerable Software and Affected Versions: YugabyteDB affected versions not specified Description: The YugabyteDB tablet server has a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could...

4.1CVSS7AI score0.00161EPSS
Exploits0References5
Rows per page
Query Builder