CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-5569 – Denial of Service via crafted zip file in jaraco/zipp
https://notcve.org/view.php?id=CVE-2024-5569
A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. ... Existe una vulnerabilidad de denegación de servicio (DoS) en la librería jaraco/zipp que afecta a todas las versiones anteriores a la 3.19.1. • https://github.com/jaraco/zipp/commit/fd604bd34f0343472521a36da1fbd22e793e14fd https://huntr.com/bounties/be898306-11f9-46b4-b28c-f4c4aa4ffbae https://access.redhat.com/security/cve/CVE-2024-5569 https://bugzilla.redhat.com/show_bug.cgi?id=2296413 • CWE-400: Uncontrolled Resource Consumption •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-39181
https://notcve.org/view.php?id=CVE-2024-39181
This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. ... Esta vulnerabilidad permite a los atacantes provocar una denegación de servicio (DoS) mediante una solicitud POST manipulada. • https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md •
CVSS: 8.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-29153
https://notcve.org/view.php?id=CVE-2024-29153
A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, and Exynos Modem 5300 that involves incorrect authorization of LTE NAS messages and leads to downgrading to lower network generations and repeated DDOS. Se descubrió una vulnerabilidad en el procesador móvil, procesador portátil y módems de Samsung con versiones Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123 y Exynos Modem 5300 que implica una autorización incorrecta de mensajes LTE NAS y conduce a una degradación a generaciones de red más bajas y DDOS repetidos. • https://semiconductor.samsung.com/support/quality-support/product-security-updates https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-29153 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-31957
https://notcve.org/view.php?id=CVE-2024-31957
A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where they lack a check for the validation of native handles, which can result in a DoS(Denial of Service) attack by unmapping an invalid length. • https://semiconductor.samsung.com/support/quality-support/product-security-updates https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31957 •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-36676
https://notcve.org/view.php?id=CVE-2024-36676
Incorrect access control in BookStack before v24.05.1 allows attackers to confirm existing system users and perform targeted notification email DoS via public facing forms. El control de acceso incorrecto en BookStack anterior a v24.05.1 permite a los atacantes confirmar los usuarios existentes del sistema y realizar notificaciones de DoS por correo electrónico dirigidas a través de formularios públicos. • https://github.com/BookStackApp/BookStack/issues/4993 https://github.com/BookStackApp/BookStack/releases/tag/v24.05.1 https://www.bookstackapp.com/blog/bookstack-release-v24-05-1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •