CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2024-45383
https://notcve.org/view.php?id=CVE-2024-45383
A specially crafted application can issue multiple IRP Complete requests which leads to a local denial-of-service. • https://github.com/SpiralBL0CK/CVE-2024-45383 https://talosintelligence.com/vulnerability_reports/TALOS-2024-2008 • CWE-664: Improper Control of a Resource Through its Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2024-8124 – Inefficient Regular Expression Complexity in GitLab
https://notcve.org/view.php?id=CVE-2024-8124
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of Service via sending a specific POST request. • https://gitlab.com/gitlab-org/gitlab/-/issues/480533 https://hackerone.com/reports/2634880 • CWE-1333: Inefficient Regular Expression Complexity •
CVSS: 8.7EPSS: 0%CPEs: -EXPL: 0CVE-2024-45825 – 5015-U8IHFT Denial-of-Service Vulnerability via CIP Message
https://notcve.org/view.php?id=CVE-2024-45825
CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. The vulnerability occurs when a malformed CIP packet is sent over the network to the device and results in a major nonrecoverable fault causing a denial-of-service. • https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1699.html • CWE-20: Improper Input Validation •
CVSS: 7.6EPSS: 0%CPEs: -EXPL: 0CVE-2021-22532 – Possible NLDAP Denial of Service attack Vulnerability
https://notcve.org/view.php?id=CVE-2021-22532
Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenTextâ„¢ eDirectory before 9.2.4.0000. • https://www.netiq.com/documentation/edirectory-92/edirectory925_releasenotes/data/edirectory925_releasenotes.html • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7423 – Stream <= 4.0.1 - Cross-Site Request Forgery to Arbitrary Options Update
https://notcve.org/view.php?id=CVE-2024-7423
This makes it possible for unauthenticated attackers to update arbitrary options that can lead to DoS or privilege escalation via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. • https://plugins.trac.wordpress.org/browser/stream/tags/4.0.1/classes/class-network.php#L353 https://plugins.trac.wordpress.org/changeset/3139815/stream/trunk/classes/class-network.php https://www.wordfence.com/threat-intel/vulnerabilities/id/9d15e418-36bb-4f53-ac67-8f6122591dd2?source=cve • CWE-352: Cross-Site Request Forgery (CSRF) •