CVSS: 9.4EPSS: 0%CPEs: 8EXPL: 0CVE-2025-0415 – Command Injection in NTP Setting
https://notcve.org/view.php?id=CVE-2025-0415
02 Apr 2025 — Successful exploitation may result in the device entering an infinite reboot loop, leading to a total or partial denial of connectivity for downstream systems that rely on its network services. • https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-0415-command-injection-leading-to-denial-of-service-(dos) • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2024-45700 – DoS vulnerability due to uncontrolled resource exhaustion
https://notcve.org/view.php?id=CVE-2024-45700
02 Apr 2025 — Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. An attacker can send specially crafted requests to the server, which will cause the server to allocate an excessive amount of memory and perform CPU-intensive decompression operations, ultimately leading to a service crash. • https://support.zabbix.com/browse/ZBX-26253 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-27692
https://notcve.org/view.php?id=CVE-2025-27692
02 Apr 2025 — Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service, Information disclosure, and Remote execution • https://www.dell.com/support/kbdoc/en-us/000296515/dsa-2025-135 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-27694
https://notcve.org/view.php?id=CVE-2025-27694
02 Apr 2025 — An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Denial of service. • https://www.dell.com/support/kbdoc/en-us/000296515/dsa-2025-135 • CWE-410: Insufficient Resource Pool •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-37917
https://notcve.org/view.php?id=CVE-2024-37917
02 Apr 2025 — Pexip Infinity before 35.0 has improper input validation that allows remote attackers to trigger a denial of service (software abort) via a crafted signalling message. • https://docs.pexip.com/admin/security_bulletins.htm •
CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-27556
https://notcve.org/view.php?id=CVE-2025-27556
02 Apr 2025 — As a consequence, django.contrib.auth.views.LoginView, django.contrib.auth.views.LogoutView, and django.views.i18n.set_language are subject to a potential denial-of-service attack via certain inputs with a very large number of Unicode characters. • https://docs.djangoproject.com/en/dev/releases/security • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-30080
https://notcve.org/view.php?id=CVE-2025-30080
02 Apr 2025 — Signalling in Pexip Infinity 29 through 36.2 before 37.0 has improper input validation that allows remote attackers to trigger a temporary denial of service (software abort). • https://docs.pexip.com/admin/security_bulletins.htm • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-25041 – Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client
https://notcve.org/view.php?id=CVE-2025-25041
01 Apr 2025 — A successful exploit could allow the creation of a Denial-of-Service (DoS) condition affecting the Microsoft Windows Operating System. • https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04841en_us&docLocale=en_US •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-27829
https://notcve.org/view.php?id=CVE-2025-27829
01 Apr 2025 — If multicast streams are enabled on different interfaces, it may be possible to interrupt multicast traffic on some of these interfaces. That could result in a denial of the multicast routing service on the firewall. • https://advisories.stormshield.eu/2025-002 •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29070
https://notcve.org/view.php?id=CVE-2025-29070
01 Apr 2025 — A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. • https://github.com/mm2/Little-CMS/issues/475 •