CVSS: 5.9EPSS: %CPEs: -EXPL: 0CVE-2025-32051 – Libsoup: segmentation fault when parsing malformed data uri
https://notcve.org/view.php?id=CVE-2025-32051
03 Apr 2025 — This flaw allows an attacker to cause a denial of service (DoS). • https://access.redhat.com/security/cve/CVE-2025-32051 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 7.5EPSS: %CPEs: -EXPL: 0CVE-2025-32049 – Libsoup: denial of service attack to websocket server
https://notcve.org/view.php?id=CVE-2025-32049
03 Apr 2025 — The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS). • https://access.redhat.com/security/cve/CVE-2025-32049 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-2704
https://notcve.org/view.php?id=CVE-2025-2704
02 Apr 2025 — OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase • https://community.openvpn.net/openvpn/wiki/CVE-2025-2704 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-20139
https://notcve.org/view.php?id=CVE-2025-20139
02 Apr 2025 — A vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input to chat entry points. ... A successful exploit could allow the attacker to cause the application to stop responding, resulting in a DoS condition. The application may not recover on its... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ece-dos-tC6m9GZ8 • CWE-185: Incorrect Regular Expression •
CVSS: 7.7EPSS: 0%CPEs: 14EXPL: 0CVE-2025-20212
https://notcve.org/view.php?id=CVE-2025-20212
02 Apr 2025 — A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series devices could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the Cisco AnyConnect service on an affected device. ... A successful exploit could allow the attacker to cause the Cisco AnyConnect VPN server to restart, resulting in the failure of the established SSL VPN sessions and forcing remote users to initiat... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-meraki-mx-vpn-dos-vNRpDvfb • CWE-457: Use of Uninitialized Variable •
CVSS: 6.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-50385
https://notcve.org/view.php?id=CVE-2024-50385
02 Apr 2025 — A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2097 • CWE-459: Incomplete Cleanup •
CVSS: 6.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-50384
https://notcve.org/view.php?id=CVE-2024-50384
02 Apr 2025 — A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2097 • CWE-459: Incomplete Cleanup •
CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2024-50595
https://notcve.org/view.php?id=CVE-2024-50595
02 Apr 2025 — An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted series of network requests can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.This vulnerability affects the NetX Duo Component HTTP Server implementation which can be found in x-cube-azrtos-f7\Middlewares\ST\netxduo\addons\http\nxd_http_server.c • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2102 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2024-50594
https://notcve.org/view.php?id=CVE-2024-50594
02 Apr 2025 — An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted series of network requests can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.This vulnerability affects the NetX Duo Web Component HTTP Server implementation which can be found in x-cube-azrtos-f7\Middlewares\ST\netxduo\addons\web\nx_web_http_server.c • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2102 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2024-50597
https://notcve.org/view.php?id=CVE-2024-50597
02 Apr 2025 — An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A specially crafted network packet can lead to denial of service. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2103 • CWE-191: Integer Underflow (Wrap or Wraparound) •