CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2025-30355 – Synapse vulnerable to federation denial of service via malformed events
https://notcve.org/view.php?id=CVE-2025-30355
27 Mar 2025 — Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild and has been fixed in Synapse v1.127.1. No known workarounds are available. • https://github.com/ui-bootstrap/CVE-2025-30355 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-26265
https://notcve.org/view.php?id=CVE-2025-26265
27 Mar 2025 — A segmentation fault in openairinterface5g v2.1.0 allows attackers to cause a Denial of Service (DoS) via a crafted UE Context Modification response. • https://anonymous.4open.science/r/Mobicom-ARCANE-36B7/README.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29072
https://notcve.org/view.php?id=CVE-2025-29072
27 Mar 2025 — This results in a denial-of-service condition for affected Starknet full-node implementations. • https://community.starknet.io/t/starknet-security-update-potential-full-node-vulnerability-recap/115314 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29484
https://notcve.org/view.php?id=CVE-2025-29484
27 Mar 2025 — An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/libming/libming/issues/330 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29485
https://notcve.org/view.php?id=CVE-2025-29485
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz4.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29487
https://notcve.org/view.php?id=CVE-2025-29487
27 Mar 2025 — An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz6.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29490
https://notcve.org/view.php?id=CVE-2025-29490
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz8.readme • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29491
https://notcve.org/view.php?id=CVE-2025-29491
27 Mar 2025 — An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz10.readme • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29493
https://notcve.org/view.php?id=CVE-2025-29493
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz11.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2025-29494
https://notcve.org/view.php?id=CVE-2025-29494
27 Mar 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. • https://github.com/goodmow/PoC/blob/main/libming/libming-fuzz12.readme • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •