Fallos del tipo CWE-409
61 resultadosCVE-2026-53430HIGHgrpc gzip decompression bomb in GRPC.Compressor.Gzip.decompress/1EPSS 0.3%CVE-2026-3114MEDIUMZip Bomb Denial of Service via Unrestricted Archive DecompressionEPSS 0.3%CVE-2026-48594HIGHDecompression bomb in Tesla.Middleware.DecompressResponse and Tesla.Middleware.CompressionEPSS 0.3%CVE-2025-66019MEDIUMpypdf manipulated LZWDecode streams can exhaust RAMEPSS 0.3%CVE-2024-55909MEDIUMIBM Concert Software denial of serviceEPSS 0.3%CVE-2025-63914MEDIUMAn issue was discovered in Cinnamon kotaemon 0.11.0. The _may_extract_zip function in the \libs\ktem\ktem\index\file\ui.py file does not cheEPSS 0.3%CVE-2026-32630MEDIUMfile-type affected by ZIP Decompression Bomb DoS via [Content_Types].xml entryEPSS 0.3%CVE-2025-69223HIGHAIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bombEPSS 0.3%CVE-2026-27460MEDIUMTandoor Recipes Affected by Denial of Service via Recipe ImportEPSS 0.3%CVE-2026-39373MEDIUMJWCrypto: JWE ZIP decompression bombEPSS 0.3%CVE-2026-54278MEDIUMAIOHTTP: Unread Compressed Request Bodies Bypass client_max_size During CleanupEPSS 0.3%CVE-2026-25962MEDIUMMarkUs: Zip bomb in config upload enables DoSEPSS 0.3%CVE-2026-42886MEDIUMAudiobookshelf: Memory amplification DoS via oversized compressed details entry in backup uploadEPSS 0.3%CVE-2026-48502HIGHMessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflowsEPSS 0.3%CVE-2026-40148MEDIUMPraisonAI Affected by Decompression Bomb DoS via Recipe Bundle Extraction Without Size LimitsEPSS 0.2%CVE-2026-54233MEDIUMvLLM: OOM Denial of Service via Audio Decompression BombEPSS 0.2%CVE-2026-48510MEDIUMMessagePack-CSharp: LZ4 decompression allocates from unbounded declared output lengthsEPSS 0.2%CVE-2022-37439MEDIUMMalformed ZIP file crashes Universal Forwarders and Splunk Enterprise through file monitoring inputEPSS 0.2%CVE-2024-29370MEDIUMIn python-jose 3.3.0 (specifically jwe.decrypt), a vulnerability allows an attacker to cause a Denial-of-Service (DoS) condition by craftingEPSS 0.2%CVE-2026-32044MEDIUMOpenClaw < 2026.3.2 - Tar Archive Safety Bypass in Skills InstallationEPSS 0.1%