CVSS: 9.2EPSS: %CPEs: 7EXPL: 0CVE-2025-0415 – Command Injection in NTP Setting
https://notcve.org/view.php?id=CVE-2025-0415
02 Apr 2025 — A remote attacker with web administrator privileges can exploit the device’s web interface to execute arbitrary system commands through the NTP settings. Successful exploitation may result in the device entering an infinite reboot loop, leading to a total or partial denial of connectivity for downstream systems that rely on its network services. • https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-0415-command-injection-leading-to-denial-of-service-(dos) • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.0EPSS: %CPEs: 3EXPL: 0CVE-2024-45700 – DoS vulnerability due to uncontrolled resource exhaustion
https://notcve.org/view.php?id=CVE-2024-45700
02 Apr 2025 — Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. • https://support.zabbix.com/browse/ZBX-26253 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: %CPEs: 1EXPL: 0CVE-2025-27692
https://notcve.org/view.php?id=CVE-2025-27692
02 Apr 2025 — A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service, Information disclosure, and Remote execution • https://www.dell.com/support/kbdoc/en-us/000296515/dsa-2025-135 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 5.3EPSS: %CPEs: 1EXPL: 0CVE-2025-27694
https://notcve.org/view.php?id=CVE-2025-27694
02 Apr 2025 — An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Denial of service. • https://www.dell.com/support/kbdoc/en-us/000296515/dsa-2025-135 • CWE-410: Insufficient Resource Pool •
CVSS: 5.5EPSS: %CPEs: 1EXPL: 0CVE-2025-25041 – Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client
https://notcve.org/view.php?id=CVE-2025-25041
01 Apr 2025 — A successful exploit could allow the creation of a Denial-of-Service (DoS) condition affecting the Microsoft Windows Operating System. • https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04841en_us&docLocale=en_US •
CVSS: 7.5EPSS: %CPEs: -EXPL: 0CVE-2025-29070
https://notcve.org/view.php?id=CVE-2025-29070
01 Apr 2025 — A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. • https://github.com/mm2/Little-CMS/issues/475 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2025-30471
https://notcve.org/view.php?id=CVE-2025-30471
31 Mar 2025 — A remote user may be able to cause a denial-of-service. • https://support.apple.com/en-us/122371 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24199
https://notcve.org/view.php?id=CVE-2025-24199
31 Mar 2025 — An app may be able to cause a denial-of-service. • https://support.apple.com/en-us/122373 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24260
https://notcve.org/view.php?id=CVE-2025-24260
31 Mar 2025 — An attacker in a privileged position may be able to perform a denial-of-service. • https://support.apple.com/en-us/122373 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2025-29908 – Netty QUIC hash collision DoS attack
https://notcve.org/view.php?id=CVE-2025-29908
31 Mar 2025 — A hash collision vulnerability (in the hash map used to manage connections) allows remote attackers to cause a considerable CPU load on the server (a Hash DoS attack) by initiating connections with colliding Source Connection IDs (SCIDs). • https://github.com/ncc-pbottine/QUIC-Hash-Dos-Advisory • CWE-407: Inefficient Algorithmic Complexity •