Weaknesses of type CWE-400

2,402 results
CVE-2025-55102HIGHA denial-of-service vulnerability exists in the NetX IPv6 component functionality of Eclipse ThreadX NetX Duo. A specially crafted network pEPSS 0.4%CVE-2025-48039MEDIUMUnverified Paths can Cause Excessive Use of System ResourcesEPSS 0.4%CVE-2026-22542CRITICALDENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNETEPSS 0.4%CVE-2026-56248HIGHCapgo - Unauthenticated Denial-of-Service via audit_logs RLS PolicyEPSS 0.4%CVE-2025-48038MEDIUMUnverified File Handles can Cause Excessive Use of System ResourcesEPSS 0.4%CVE-2025-48041HIGHSSH_FXP_OPENDIR may Lead to Exhaustion of File HandlesEPSS 0.4%CVE-2025-50100LOWVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0EPSS 0.4%CVE-2021-32455MEDIUMSITEL CAP/PRX vulnerable to a denial of service attackEPSS 0.4%CVE-2025-25193MEDIUMDenial of Service attack on windows app using NettyEPSS 0.4%CVE-2023-40594MEDIUMDenial of Service (DoS) via the ‘printf’ Search FunctionEPSS 0.4%CVE-2021-22553MEDIUMHeap Memory exhaustion in GerritEPSS 0.4%CVE-2026-20084HIGHA vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packetsEPSS 0.4%CVE-2026-45783HIGHlibp2p: Unvalidated PUT_VALUE records allow unbounded disk exhaustion on DHT server nodesEPSS 0.4%CVE-2026-10691MEDIUMwonderwhy-er DesktopCommanderMCP start_search search-manager.ts redosEPSS 0.4%CVE-2026-46910CRITICALVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure Security). SupportedEPSS 0.4%CVE-2022-27640A vulnerability has been identified in SIMATIC CP 442-1 RNA (All versions < V1.5.18), SIMATIC CP 443-1 RNA (All versions < V1.5.18). The affEPSS 0.4%CVE-2026-10291MEDIUMEnderfga claw-orchestrator Session Grep Endpoint embedded-server.ts validateRegex redosEPSS 0.4%CVE-2025-67445MEDIUMTOTOLINK X5000R V9.1.0cu.2415_B20250515 contains a denial-of-service vulnerability in /cgi-bin/cstecgi.cgi. The CGI reads the CONTENT_LENGTHEPSS 0.4%CVE-2026-31247HIGHDocling's JATS XML backend is vulnerable to XML Entity Expansion (XXE) attacks thru 2.61.0. The backend uses etree.parse() to parse XML fileEPSS 0.4%CVE-2025-9182HIGHDenial-of-service due to out-of-memory in the Graphics: WebRender componentEPSS 0.4%