
CVE-2025-2240 – Smallrye-fault-tolerance: smallrye fault tolerance
https://notcve.org/view.php?id=CVE-2025-2240
12 Mar 2025 — Every call creates a new object within meterMap and may lead to a denial of service (DoS) issue. • https://access.redhat.com/security/cve/CVE-2025-2240 • CWE-1325: Improperly Controlled Sequential Memory Allocation •

CVE-2024-52362 – IBM App Connect Enterprise Certified Container denial of service
https://notcve.org/view.php?id=CVE-2024-52362
12 Mar 2025 — IBM App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, and 12.8 could allow an authenticated user to cause a denial of service in the App Connect flow due to improper validation of server-side input. • https://www.ibm.com/support/pages/node/7185527 • CWE-1286: Improper Validation of Syntactic Correctness of Input •

CVE-2024-10838 – Integer Underflow in DDS_Security_Deserialize_ methods may lead to OOB read
https://notcve.org/view.php?id=CVE-2024-10838
12 Mar 2025 — This may result into secret data or pointers revealing the layout of the address space to be included into a deserialized data structure, which may potentially lead to thread crashes or cause denial of service conditions. • https://github.com/eclipse-cyclonedds/cyclonedds/releases/tag/0.10.5 • CWE-191: Integer Underflow (Wrap or Wraparound) •

CVE-2025-25566
https://notcve.org/view.php?id=CVE-2025-25566
12 Mar 2025 — Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. • https://lzydry.github.io/CVE-2025-25566 • CWE-401: Missing Release of Memory after Effective Lifetime •

CVE-2025-25774
https://notcve.org/view.php?id=CVE-2025-25774
12 Mar 2025 — When a UE switches between two gNBs and sends a handover request at a specific time, it may cause an exception in the AMF's internal state machine, leading to an AMF crash and resulting in a Denial of Service (DoS). • https://github.com/guoweifk/BugReport/blob/main/Open5GS%20AMF%20Denial%20of%20Service%20via%20GMM%20State%20Handling%20in%20Handover • CWE-691: Insufficient Control Flow Management •

CVE-2025-1785 – Download Manager <= 3.3.08 - Authenticated (Author+) Path Traversal to Limited File Overwrite
https://notcve.org/view.php?id=CVE-2025-1785
12 Mar 2025 — This makes it possible for authenticated attackers, with Author-level access and above, to overwrite select file types outside of the originally intended directory, which may cause a denial of service. • https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3252990%40download-manager&new=3252990%40download-manager&sfp_email=&sfph_mail=#file4 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVE-2025-21170 – Substance3D - Modeler | NULL Pointer Dereference (CWE-476)
https://notcve.org/view.php?id=CVE-2025-21170
11 Mar 2025 — Substance3D - Modeler versions 1.15.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. • https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-21.html • CWE-476: NULL Pointer Dereference •

CVE-2025-23243 – NVIDIA Riva gRPC API Missing Authentication for Critical Function Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-23243
11 Mar 2025 — A successful exploit of this vulnerability might lead to data tampering or denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5625 • CWE-284: Improper Access Control •

CVE-2025-23242 – NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability
https://notcve.org/view.php?id=CVE-2025-23242
11 Mar 2025 — A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, denial of service, or information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5625 • CWE-284: Improper Access Control •

CVE-2025-24201 – Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability
https://notcve.org/view.php?id=CVE-2025-24201
11 Mar 2025 — Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. • https://support.apple.com/en-us/122281 • CWE-787: Out-of-bounds Write •