Fallos del tipo CWE-400
2402 resultadosCVE-2026-43870HIGHApache Thrift: Node.js web_server.js multi-vulnerabilityEPSS 0.4%CVE-2026-28789HIGHOliveTin: Unauthenticated DoS via concurrent map writes in OAuth2 state handlingEPSS 0.4%CVE-2025-65889HIGHA type validation flaw in the flow.dstack() component of OneFlow v0.9.0 allows attackers to cause a Denial of Service (DoS) via a crafted inEPSS 0.4%CVE-2025-54605HIGHBitcoin Core through 29.0 allows Uncontrolled Resource Consumption (issue 2 of 2).EPSS 0.4%CVE-2025-54604HIGHBitcoin Core through 29.0 allows Uncontrolled Resource Consumption (issue 1 of 2).EPSS 0.4%CVE-2025-65888HIGHA dimension validation flaw in the flow.empty() component of OneFlow 0.9.0 allows attackers to cause a Denial of Service (DoS) via a negativEPSS 0.4%CVE-2025-61301HIGHDenial-of-analysis in reporting/mongodb.py and reporting/jsondump.py in CAPEv2 (commit 52e4b43, on 2025-05-17) allows attackers who can submEPSS 0.4%CVE-2025-65886HIGHA shape mismatch vulnerability in OneFlow v0.9.0 allows attackers to cause a Denial of Service (DoS) via supplying crafted tensor shapes.EPSS 0.4%CVE-2026-33610MEDIUMPossible file descriptor exhaustion in forward-dnsupdateEPSS 0.4%CVE-2026-30653HIGHAn issue in Free5GC v.4.2.0 and before allows a remote attacker to cause a denial of service via the function HandleAuthenticationFailure ofEPSS 0.4%CVE-2023-1981MEDIUMA vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to crashEPSS 0.4%CVE-2025-53050HIGHVulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versions thEPSS 0.4%CVE-2026-46866HIGHVulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Agent Next Gen). Supported veEPSS 0.4%CVE-2026-22690LOWpypdf has possible long runtimes for missing /Root object with large /Size valuesEPSS 0.4%CVE-2025-55551HIGHAn issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operEPSS 0.4%CVE-2026-22691LOWpypdf has possible long runtimes for malformed startxrefEPSS 0.4%CVE-2023-32665MEDIUMGvariant deserialisation does not match spec for non-normal dataEPSS 0.4%CVE-2025-25341HIGHA vulnerability exists in the libxmljs 1.0.11 when parsing a specially crafted XML document. Accessing the internal _ref property on entity_EPSS 0.4%CVE-2025-52867MEDIUMQsync CentralEPSS 0.4%CVE-2023-53873HIGHSyncBreeze 15.2.24 Denial of Service via Login Endpoint OverflowEPSS 0.4%