CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2025-30355 – Synapse vulnerable to federation denial of service via malformed events
https://notcve.org/view.php?id=CVE-2025-30355
27 Mar 2025 — Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild and has been fixed in Synapse v1.127.1. No known workarounds are available. • https://github.com/ui-bootstrap/CVE-2025-30355 • CWE-20: Improper Input Validation •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30232 – Debian Security Advisory 5887-1
https://notcve.org/view.php?id=CVE-2025-30232
27 Mar 2025 — A remote attacker could use this issue to cause Exim to crash, resulting in a denial of service, or possibly execute arbitrary code. • https://www.exim.org/static/doc/security/CVE-2025-30232.txt • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29072
https://notcve.org/view.php?id=CVE-2025-29072
27 Mar 2025 — This results in a denial-of-service condition for affected Starknet full-node implementations. • https://community.starknet.io/t/starknet-security-update-potential-full-node-vulnerability-recap/115314 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29484
https://notcve.org/view.php?id=CVE-2025-29484
27 Mar 2025 — An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/libming/libming/issues/330 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29485
https://notcve.org/view.php?id=CVE-2025-29485
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz4.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29487
https://notcve.org/view.php?id=CVE-2025-29487
27 Mar 2025 — An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz6.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29490
https://notcve.org/view.php?id=CVE-2025-29490
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz8.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29491
https://notcve.org/view.php?id=CVE-2025-29491
27 Mar 2025 — An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz10.readme • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29493
https://notcve.org/view.php?id=CVE-2025-29493
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz11.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29494
https://notcve.org/view.php?id=CVE-2025-29494
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz12.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •