Page 5 of 49349 results (0.124 seconds)

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

10 Mar 2025 — (Chromium security severity: High) Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. • https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop_10.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

10 Mar 2025 — This could lead to remote denial of service with no additional execution privileges needed. • https://source.android.com/security/bulletin/pixel/2025-03-01 • CWE-476: NULL Pointer Dereference •

CVSS: 6.0EPSS: 0%CPEs: -EXPL: 0

10 Mar 2025 — An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the round_up_to_page funciton. • https://github.com/Marsman1996/pocs/blob/master/redox/CVE-2024-57492/README.md • CWE-1262: Improper Access Control for Register Interface •

CVSS: 3.1EPSS: 0%CPEs: -EXPL: 1

09 Mar 2025 — The manipulation leads to denial of service. ... Dank der Manipulation mit unbekannten Daten kann eine denial of service-Schwachstelle ausgenutzt werden. • https://github.com/geo-chen/Thinkware-Dashcam • CWE-404: Improper Resource Shutdown or Release •

CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0

07 Mar 2025 — An attacker can supply a payload with Object.prototype setter to introduce or modify properties within the global prototype chain, causing denial of service (DoS) a the minimum consequence. • https://github.com/intlify/vue-i18n/commit/4bb6eacda7fc2cde5687549afa0efb27ca40862a • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

06 Mar 2025 — This can potentially lead to denial of service. • https://github.com/SixLabors/ImageSharp/issues/2859 • CWE-787: Out-of-bounds Write •

CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0

06 Mar 2025 — The reason why -EINVAL was ignored was it really should only be used upon invalid parameters coming from userspace and in that case we don't want to log an error since we do not want to give userspace a way to do a denial-of-service attack on the syslog / diskspace. The reason why -EINVAL was ignored was it really should only be used upon invalid parameters coming from userspace and in that case we don't want to log an error since we do not want to give userspace a way to do a denial-of-service

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

06 Mar 2025 — Se probaron dos productos, pero como el proveedor no ha respondido a los informes, el estado de la aplicación de parches sigue siendo desconocido, así como los grupos de dispositivos y rangos de firmware en los que se comparte la misma contraseña. • https://cert.pl/en/posts/2025/03/CVE-2024-13892 • CWE-1392: Use of Default Credentials •

CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0

06 Mar 2025 — The django.utils.text.wrap() method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings. ... An attacker could possibly use this issue to cause a denial of service. • https://docs.djangoproject.com/en/dev/releases/security • CWE-770: Allocation of Resources Without Limits or Throttling •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

06 Mar 2025 — The pairing API request handler in Microsoft HoloLens 1 (Windows Holographic) through 10.0.17763.3046 and HoloLens 2 (Windows Holographic) through 10.0.22621.1244 allows remote attackers to cause a Denial of Service (resource consumption and device unusability) by sending many requests through the Device Portal framework. • https://github.com/tania-silva/Hololens • CWE-770: Allocation of Resources Without Limits or Throttling •