CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-2900 – IBM Semeru Runtime denial of service
https://notcve.org/view.php?id=CVE-2025-2900
14 May 2025 — IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17.0.14.0, and 21.0.0.0 through 12.0.6.0 is vulnerable to a denial of service caused by a buffer overflow and subsequent crash, due to a defect in its native AES/CBC encryption implementation. • https://www.ibm.com/support/pages/node/7233415 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.7EPSS: 0%CPEs: -EXPL: 0CVE-2025-4637 – Divide By Zero in dlib
https://notcve.org/view.php?id=CVE-2025-4637
14 May 2025 — Divide By Zero vulnerability in davisking dlib allows remote attackers to cause a denial of service via a crafted file. .This issue affects dlib: before <19.24.7. • https://github.com/davisking/dlib/pull/3058 • CWE-369: Divide By Zero •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-46785 – Zoom Workplace Apps for Windows - Buffer Over-read
https://notcve.org/view.php?id=CVE-2025-46785
14 May 2025 — Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25021 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30668 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30668
14 May 2025 — Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25020 • CWE-476: NULL Pointer Dereference •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0130 – PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets
https://notcve.org/view.php?id=CVE-2025-0130
14 May 2025 — A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode. This issue does not affect Cloud NGFW or Prisma Access. • https://security.paloaltonetworks.com/CVE-2025-0130 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30667 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30667
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25019 • CWE-476: NULL Pointer Dereference •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30666 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30666
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30665 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30665
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24785 – iTop dashboard vulnerable to denial of service
https://notcve.org/view.php?id=CVE-2025-24785
14 May 2025 — iTop is an web based IT Service Management tool. In version 3.2.0, an attacker may send a URL to the server to trigger a PHP error. The next user trying to load this dashboard would encounter a crashed start page. Version 3.2.1 fixes the issue by checking the provided layout_class before saving the dashboard. • https://github.com/Combodo/iTop/security/advisories/GHSA-49rq-cgv9-7hv4 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24026 – iTop Inefficient Regular Expression Complexity vulnerability
https://notcve.org/view.php?id=CVE-2025-24026
14 May 2025 — Versions prior to 3.2.1 are vulnerable to regular expression denial of service (ReDoS) that may, under some circumstances, affect iTop server. • https://github.com/Combodo/iTop/security/advisories/GHSA-9g7f-jmc3-rrmf • CWE-1333: Inefficient Regular Expression Complexity •