CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-46785 – Zoom Workplace Apps for Windows - Buffer Over-read
https://notcve.org/view.php?id=CVE-2025-46785
14 May 2025 — Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25021 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30668 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30668
14 May 2025 — Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25020 • CWE-476: NULL Pointer Dereference •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0130 – PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets
https://notcve.org/view.php?id=CVE-2025-0130
14 May 2025 — A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode. This issue does not affect Cloud NGFW or Prisma Access. • https://security.paloaltonetworks.com/CVE-2025-0130 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30667 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30667
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25019 • CWE-476: NULL Pointer Dereference •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30666 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30666
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30665 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30665
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24785 – iTop dashboard vulnerable to denial of service
https://notcve.org/view.php?id=CVE-2025-24785
14 May 2025 — iTop is an web based IT Service Management tool. In version 3.2.0, an attacker may send a URL to the server to trigger a PHP error. The next user trying to load this dashboard would encounter a crashed start page. Version 3.2.1 fixes the issue by checking the provided layout_class before saving the dashboard. • https://github.com/Combodo/iTop/security/advisories/GHSA-49rq-cgv9-7hv4 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24026 – iTop Inefficient Regular Expression Complexity vulnerability
https://notcve.org/view.php?id=CVE-2025-24026
14 May 2025 — Versions prior to 3.2.1 are vulnerable to regular expression denial of service (ReDoS) that may, under some circumstances, affect iTop server. • https://github.com/Combodo/iTop/security/advisories/GHSA-9g7f-jmc3-rrmf • CWE-1333: Inefficient Regular Expression Complexity •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-3600 – Unsafe Reflection Vulnerability in Telerik UI for ASP.NET AJAX
https://notcve.org/view.php?id=CVE-2025-3600
14 May 2025 — In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an unhandled exception resulting in a crash of the hosting process and denial of service. • https://www.telerik.com/products/aspnet-ajax/documentation/knowledge-base/kb-security-unsafe-reflection-cve-2025-3600 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-26783
https://notcve.org/view.php?id=CVE-2025-26783
14 May 2025 — Incorrect handling of undefined values leads to a Denial of Service. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-400: Uncontrolled Resource Consumption •