CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-38301
https://notcve.org/view.php?id=CVE-2024-38301
A low privileged attacker could potentially exploit this vulnerability, leading to denial of service on the local system and information disclosure. • https://www.dell.com/support/kbdoc/en-us/000225774/dsa-2024-258 • CWE-1107: Insufficient Isolation of Symbolic Constant Definitions •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-38875 – python-django: Potential denial-of-service in django.utils.html.urlize()
https://notcve.org/view.php?id=CVE-2024-38875
An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urlizetrunc were subject to a potential denial of service attack via certain inputs with a very large number of brackets. ... A vulnerability was found in the Django framework's urlize and urlizetrunc functions, where an attacker can input a certain string containing a large number of brackets, leads to a potential denial of service when the application attempts to process the excessive input. • https://docs.djangoproject.com/en/dev/releases/security https://groups.google.com/forum/#%21forum/django-announce https://www.djangoproject.com/weblog/2024/jul/09/security-releases https://access.redhat.com/security/cve/CVE-2024-38875 https://bugzilla.redhat.com/show_bug.cgi?id=2295935 • CWE-130: Improper Handling of Length Parameter Inconsistency CWE-1287: Improper Validation of Specified Type of Input •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 1CVE-2024-39614 – python-django: Potential denial-of-service in django.utils.translation.get_supported_language_variant()
https://notcve.org/view.php?id=CVE-2024-39614
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_language_variant() was subject to a potential denial-of-service attack when used with very long strings containing specific characters. ... The issue triggers when parsed with very long strings, including a specific set of characters, leading to a potential denial of service attack. • https://github.com/Abdurahmon3236/-CVE-2024-39614 https://docs.djangoproject.com/en/dev/releases/security https://groups.google.com/forum/#%21forum/django-announce https://www.djangoproject.com/weblog/2024/jul/09/security-releases https://access.redhat.com/security/cve/CVE-2024-39614 https://bugzilla.redhat.com/show_bug.cgi?id=2295938 • CWE-130: Improper Handling of Length Parameter Inconsistency CWE-1287: Improper Validation of Specified Type of Input •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2024-31314
https://notcve.org/view.php?id=CVE-2024-31314
In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. ... En múltiples funciones de ShortcutService.java, existe una posible DOS persistente debido al agotamiento de recursos. • https://android.googlesource.com/platform/frameworks/base/+/c0d5f75e01308fb7d6d86639a0a6e2ff81b30be6 https://source.android.com/security/bulletin/2024-06-01 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 3.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-6501 – Networkmanager: denial of service
https://notcve.org/view.php?id=CVE-2024-6501
NetworkManager would crash, leading to a denial of service. • https://access.redhat.com/security/cve/CVE-2024-6501 https://bugzilla.redhat.com/show_bug.cgi?id=2295734 • CWE-400: Uncontrolled Resource Consumption •