8 matches found
CVE-2026-49361 Apache Fluss Netty Frame Decoder Memory Exhaustion Vulnerability
Apache Fluss versions prior to 0.9.1 configure the Netty LengthFieldBasedFrameDecoder with Integer.MAXVALUE as the maximum frame length, allowing unauthenticated remote attackers to exhaust JVM heap memory on TabletServer and CoordinatorServer by sending specially crafted frame headers, resulting...
EUVD-2025-24148
Malicious code in bioql PyPI...
CVE-2025-8865
A null pointer dereference flaw has been discovered in YugabyteDB. An authenticated attacker could exploit this to crash the YCQL tablet server, resulting in a denial of service. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Ha...
CVE-2025-8865
The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...
CVE-2025-8865
The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...
CVE-2025-8865
The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could exploit this issue to crash the YCQL tablet server, resulting in a denial of service...
CVE-2025-8865
The CVE-2025-8865 issue affects YugabyteDB’s YCQL tablet server. A flaw in YCQL query handling can trigger a null pointer dereference when processing certain malformed inputs, allowing an authenticated attacker to crash the YCQL tablet server and cause a denial of service. Exploitation is describ...
PT-2025-32549 · Yugabyte · Yugabytedb
Name of the Vulnerable Software and Affected Versions: YugabyteDB affected versions not specified Description: The YugabyteDB tablet server has a flaw in its YCQL query handling that can trigger a null pointer dereference when processing certain malformed inputs. An authenticated attacker could...