48538 results (0.055 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

21 Nov 2023 — A buffer overflow leading to a denial of service has been found in the NVD Tools, a collection of tools for working with National Vulnerability Database feeds. • https://github.com/facebookincubator/nvdtools • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: -EPSS: 0%CPEs: 6EXPL: 0

10 Feb 2025 — In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooting from the VM side. Ratelimit the warning so it doesn't DoS the VM. • https://git.kernel.org/stable/c/81d4dd05c412ba04f9f6b85b718e6da833be290c •

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

10 Feb 2025 — Starting in version 0.3.2 and prior to versions 0.3.8, 0.4.19, and 0.5.6, there is a possibility for denial of service by memory exhaustion in `net-imap`'s response parser. • https://github.com/ruby/net-imap/commit/70e3ddd071a94e450b3238570af482c296380b35 • CWE-400: Uncontrolled Resource Consumption CWE-405: Asymmetric Resource Consumption (Amplification) CWE-409: Improper Handling of Highly Compressed Data (Data Amplification) CWE-770: Allocation of Resources Without Limits or Throttling CWE-789: Memory Allocation with Excessive Size Value CWE-1287: Improper Validation of Specified Type of Input •

CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0

10 Feb 2025 — This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition. • https://access.redhat.com/security/cve/CVE-2024-12243 • CWE-407: Inefficient Algorithmic Complexity •

CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0

10 Feb 2025 — This flaw allows an attacker to send a specially crafted certificate, causing a denial of service attack. • https://access.redhat.com/security/cve/CVE-2024-12133 • CWE-407: Inefficient Algorithmic Complexity •

CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0

07 Feb 2025 — This vulnerability's only known impact is denial of service. • https://en.wikipedia.org/wiki/DOM_clobbering • CWE-20: Improper Input Validation •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

07 Feb 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-02.md • CWE-190: Integer Overflow or Wraparound •

CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0

07 Feb 2025 — This flaw could lead to increased memory consumption and potential denial of service under certain conditions. • https://nodejs.org/en/blog/vulnerability/january-2025-security-releases • CWE-401: Missing Release of Memory after Effective Lifetime •

CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 1

07 Feb 2025 — A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14.1 prior to 17.3.7, 17.4 prior to 17.4.4, and 17.5 prior to 17.5.2. A denial of service could occur upon importing maliciously crafted content using the Fogbugz importer. • https://about.gitlab.com/releases/2024/11/13/patch-release-gitlab-17-5-2-released/#denial-of-service-by-importing-malicious-crafted-fogbugz-import-payload • CWE-770: Allocation of Resources Without Limits or Throttling •

CVSS: 9.8EPSS: 0%CPEs: -EXPL: 1

07 Feb 2025 — This vulnerability allows attackers to cause a Denial of Service (DoS) or potentially arbitrary code execution via a crafted POST request. • https://github.com/laskdjlaskdj12/CVE-2024-35106-POC •