332 matches found
EUVD-2025-16780
Malicious code in bioql PyPI...
EUVD-2022-42675
Malicious code in bioql PyPI...
EUVD-2025-7021
Malicious code in bioql PyPI...
EUVD-2022-32360
Malicious code in bioql PyPI...
EUVD-2022-30437
Malicious code in bioql PyPI...
EUVD-2024-21344
Malicious code in bioql PyPI...
EUVD-2022-36056
Malicious code in bioql PyPI...
EUVD-2022-36925
Malicious code in bioql PyPI...
Multer vulnerable to Denial of Service via unhandled exception from malformed request
Impact A vulnerability in Multer versions = 1.4.4-lts.1, 2.0.2 allows an attacker to trigger a Denial of Service DoS by sending a malformed request. This request causes an unhandled exception, leading to a crash of the process. Patches Users should upgrade to 2.0.2 Workarounds None...
GHSA-FJGF-RC76-4X9P Multer vulnerable to Denial of Service via unhandled exception from malformed request
Impact A vulnerability in Multer versions = 1.4.4-lts.1, 2.0.2 allows an attacker to trigger a Denial of Service DoS by sending a malformed request. This request causes an unhandled exception, leading to a crash of the process. Patches Users should upgrade to 2.0.2 Workarounds None...
CVE-2025-7338 Multer vulnerable to Denial of Service via unhandled exception from malformed request
Multer is a node.js middleware for handling multipart/form-data. A vulnerability that is present starting in version 1.4.4-lts.1 and prior to version 2.0.2 allows an attacker to trigger a Denial of Service DoS by sending a malformed multi-part upload request. This request causes an unhandled...
CVE-2025-7338
CVE-2025-7338 affects Multer (Node.js middleware for multipart/form-data) and can trigger a DoS via a malformed multipart upload. The issue exists in versions 1.4.4-lts.1 through prior to 2.0.2, causing an unhandled exception and process crash. The recommended fix is to upgrade to Multer 2.0.2 ; ...
Qwik's unhandled exception vulnerabilty can cause server crashes from malicious requests
Summary Possibility to craft a request that will crash the Qwik Server in the default configuration. Details When a Qwik Server Action QRL is executed it dynamically load the file containing the symbol. When an invalid qfunc is sent, the server does not handle the thrown error. The error then...
GHSA-QR9H-J6XG-2J72 Qwik's unhandled exception vulnerabilty can cause server crashes from malicious requests
Summary Possibility to craft a request that will crash the Qwik Server in the default configuration. Details When a Qwik Server Action QRL is executed it dynamically load the file containing the symbol. When an invalid qfunc is sent, the server does not handle the thrown error. The error then...
CVE-2025-53366
A flaw was found in MCP. The MCP Python SDK contains a validation error that leads to an unhandled exception when processing malformed requests. This flaw allows a remote attacker to trigger this condition by sending a crafted request, resulting in an application-level service interruption...
MCP Python SDK vulnerability in the FastMCP Server causes validation error, leading to DoS
A validation error in the MCP SDK can cause an unhandled exception when processing malformed requests, resulting in service unavailability 500 errors until manually restarted. Impact may vary depending on the deployment conditions, and presence of infrastructure-level resilience measures. Thank y...
GHSA-3QHF-M339-9G5V MCP Python SDK vulnerability in the FastMCP Server causes validation error, leading to DoS
A validation error in the MCP SDK can cause an unhandled exception when processing malformed requests, resulting in service unavailability 500 errors until manually restarted. Impact may vary depending on the deployment conditions, and presence of infrastructure-level resilience measures. Thank y...
MCP Python SDK has Unhandled Exception in Streamable HTTP Transport, Leading to Denial of Service
If a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and...
GHSA-J975-95F5-7WQH MCP Python SDK has Unhandled Exception in Streamable HTTP Transport, Leading to Denial of Service
If a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and...
CVE-2025-53365 MCP Python SDK has Unhandled Exception in Streamable HTTP Transport ,Leading to Denial of Service
The MCP Python SDK, called mcp on PyPI, is a Python implementation of the Model Context Protocol MCP. Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing...