Allocation of Resources Without Limits or Throttling

Overview pywebtransport is an An async-native WebTransport stack for Python. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the parsecapsules function due to missing HTTP/3 capsule size limits. An attacker can exhaust system memory...

PT-2025-18787 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A WebTransport session hijacking issue has been identified, which could allow bypass of origin validation and potentially lead to sensitive data leakage between sites. Recommendations: At th...

CVE-2025-1931

It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

CVE-2025-1931 Use-after-free in WebTransportChild

It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 136, Firefox ESR 115.21, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge relates to memory-walking attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...

The vulnerability of the WebTransport component in Google Chrome allows a hacker to execute arbitrary code.

The vulnerability of the WebTransport component in Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...