2 matches found
CVE-2025-14874
Nodemailer CVE-2025-14874 is a DoS vulnerability in the Nodemailer library where a crafted email address header triggers infinite recursion in the address parser. Affected product: Nodemailer (Node.js). Root cause: address parser recursion leading to denial of service. Impact: high availability l...
CVE-2026-3118
The CVE covers CVE-2026-3118 affecting the Orchestrator Plugin in Red Hat Developer Hub (Backstage). The root cause is insufficient input validation in GraphQL query handling, allowing an authenticated user to inject crafted input that disrupts backend query processing and triggers a platform-wid...