CVE-2026-48187

An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS: 8.0.X 2023.X 2024.X 2025.X 2026.X before 2026.4.X Please note that OTRS Community Edition 6.x,...

CVE-2025-13406

NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT Webserver modules allows HTTP DoS.This issue affects smartLink SW-HT: 1.43...

Fortinet FortiWeb Code Issue Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

CVE-2026-24641

A NULL Pointer Dereference vulnerability CWE-476 vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow an authenticated attacker to crash the HTTP daemon via crafted HTTP...

CVE-2026-24641

Fortinet FortiWeb contains a NULL pointer dereference (CWE-476) that can crash the HTTP daemon. Affected products/versions: FortiWeb 8.0.0–8.0.2; 7.6.0–7.6.6; 7.4 All; 7.2 All; 7.0 All. An authenticated attacker can trigger via crafted HTTP requests. Impact: Availability loss (LOW per CVSS 3.1), ...

CVE-2024-58306

minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending oversized GET requests. Attackers can send crafted HTTP requests with excessive data to overwhelm the server and cause service interruption...

EUVD-2024-55327

minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending oversized GET requests. Attackers can send crafted HTTP requests with excessive data to overwhelm the server and cause service interruption...

CVE-2024-58306 minaliC 2.0.0 Denial of Service Vulnerability via Large GET Request

minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending oversized GET requests. Attackers can send crafted HTTP requests with excessive data to overwhelm the server and cause service interruption...

PT-2025-50758

Name of the Vulnerable Software and Affected Versions minaliC version 2.0.0 Description minaliC version 2.0.0 contains a denial of service issue. Remote attackers can disrupt service by sending oversized GET requests. Specifically, crafted HTTP requests with excessive data can overwhelm the serve...

libsoup: Out of bounds reads in soup_headers_parse_request()

A flaw was found in libsoup, where the soupheadersparserequest function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server...

SmartLink HW-PN和SmartLink HW-DP 安全漏洞

SmartLink HW-PN and SmartLink HW-DP are both edge gateway products for industrial automation from SmartLink USA. A security vulnerability exists in SmartLink HW-PN version 1.03 and earlier and SmartLink HW-DP version 1.31, which stems from a scan of TCP port 80 could cause the web server to crash...

Rockwell Automation 1715-AENTR EtherNet/IP Adapter Denial of Service Vulnerability (CNVD-2025-24581)

The Rockwell Automation 1715-AENTR EtherNet/IP Adapter is a redundant Ethernet adapter module from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation 1715-AENTR EtherNet/IP Adapter, which can be exploited by an attacker to cause a web server to crash...

EUVD-2025-34192

A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is required to recover...

CVE-2025-9177

A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is required to recover...

CVE-2025-9177 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability

A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is required to recover...

CVE-2025-9177

Rockwell Automation 1715 EtherNet/IP Comms Module/Adapter is affected by CVE-2025-9177. A denial-of-service vulnerability arises from a high volume of requests to the device's web server, which can cause the web server to crash. Impact described across sources: requires a power cycle to recover a...

Rockwell Automation 1715 EtherNet/IP Comms Module

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to cause the web server to crash, requiring a restart to recover. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...

Rockwell Automation 1715-AENTR EtherNet/IP Adapter 安全漏洞

The Rockwell Automation 1715-AENTR EtherNet/IP Adapter is a redundant Ethernet adapter module from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation 1715-AENTR EtherNet/IP Adapter, which can be exploited by an attacker to cause a web server to crash...

PT-2025-41919

Name of the Vulnerable Software and Affected Versions Web Server affected versions not specified Description A denial-of-service issue exists due to a high volume of requests sent to the web server. This can lead to a system crash, requiring a power cycle for recovery and webpage utilization. The...

EUVD-2002-0925

Malware in sbrugna...