51573 results (0.007 seconds)

CVSS: 7.1EPSS: %CPEs: 1EXPL: 0

17 Jul 2025 — A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5662 • CWE-392: Missing Report of Error Condition •

CVSS: 8.5EPSS: %CPEs: 2EXPL: 0

17 Jul 2025 — A successful exploit of this vulnerability might lead to data tampering and denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5659 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 9.0EPSS: %CPEs: 2EXPL: 0

17 Jul 2025 — A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5659 • CWE-426: Untrusted Search Path •

CVSS: 6.2EPSS: %CPEs: 1EXPL: 0

17 Jul 2025 — Prior to version 25.0.0, a null pointer dereference in the Compound handler may lead to denial of service. • https://securitylab.github.com/advisories/GHSL-2025-059_7-Zip • CWE-476: NULL Pointer Dereference •

CVSS: 7.7EPSS: %CPEs: 1EXPL: 0

17 Jul 2025 — Zeroes written outside heap buffer in RAR5 handler may lead to memory corruption and denial of service in versions of 7-Zip prior to 25.0.0. • https://securitylab.github.com/advisories/GHSL-2025-058_7-Zip • CWE-122: Heap-based Buffer Overflow •

CVSS: 7.6EPSS: %CPEs: -EXPL: 0

17 Jul 2025 — NVIDIA DOCA-Host and Mellanox OFED contain a vulnerability in the VGT+ feature, where an attacker on a VM might cause escalation of privileges and denial of service on the VLAN. • https://nvidia.custhelp.com/app/answers/detail/a_id/5654 • CWE-279: Incorrect Execution-Assigned Permissions •

CVSS: 7.8EPSS: %CPEs: 1EXPL: 0

17 Jul 2025 — A vulnerability that is present starting in version 1.4.4-lts.1 and prior to version 2.0.2 allows an attacker to trigger a Denial of Service (DoS) by sending a malformed multi-part upload request. • https://cna.openjsf.org/security-advisories.html • CWE-248: Uncaught Exception •

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

16 Jul 2025 — IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. • https://www.ibm.com/support/pages/node/7239856 • CWE-121: Stack-based Buffer Overflow •

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

16 Jul 2025 — A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. • https://kb.isc.org/docs/cve-2025-40777 • CWE-617: Reachable Assertion •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

16 Jul 2025 — Broken access control in Fortra's GoAnywhere MFT prior to 7.8.1 allows an attacker to create a denial of service situation when configured to use GoAnywhere One-Time Password (GOTP) email two-factor authentication (2FA) and the user has not set an email address. • https://www.fortra.com/security/advisories/product-security/FI-2025-009 • CWE-862: Missing Authorization •