CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2024-52797 – Searching Opencast may cause a denial of service
https://notcve.org/view.php?id=CVE-2024-52797
From Opencast version 11.4 and newer, Elasticsearch queries are retried a configurable number of times in the case of error to handle temporary losses of connection to Elasticsearch. ... This causes a massive increase in log size which can in some cases cause a denial of service due to disk exhaustion. Opencast 13.10 and Opencast 14.3 contain patches which address the base issue, with Opencast 16.7 containing changes which harmonize the search behaviour between the admin UI and external API. • https://github.com/opencast/opencast/security/advisories/GHSA-jh6x-7xfg-9cq2 https://github.com/opencast/opencast/pull/5033 https://github.com/opencast/opencast/pull/5150 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-45663 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-45663
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. • https://www.ibm.com/support/pages/node/7175943 •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-11104 – Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) <= 2.6.2 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options Update
https://notcve.org/view.php?id=CVE-2024-11104
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the save_options() function in all versions up to, and including, 2.6.2. • https://plugins.trac.wordpress.org/browser/sky-elementor-addons/tags/2.6.1/includes/admin.php#L1267 https://plugins.trac.wordpress.org/browser/sky-elementor-addons/tags/2.6.1/includes/admin.php#L1290 https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3189030%40sky-elementor-addons&new=3189030%40sky-elementor-addons&sfp_email=&sfph_mail= https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3193495%40sky-elementor-addons&new=3193495%40sky-ele • CWE-862: Missing Authorization •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-11612 – 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-11612
7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. ... An attacker can leverage this vulnerability to create a denial-of-service condition on the system. ... This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. ... An attacker can leverage this vulnerability to create a denial-of-service condition on the system. • https://www.zerodayinitiative.com/advisories/ZDI-24-1606 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-53432
https://notcve.org/view.php?id=CVE-2024-53432
This issue could potentially be exploited to cause a denial-of-service (DoS) attack when processing untrusted PLY files. • https://github.com/PointCloudLibrary/pcl/issues/6162 •