Falhas do tipo CWE-400

2.405 resultados
CVE-2026-6022HIGHUncontrolled Resource Consumption Vulnerability in Telerik UI for ASP.NET AJAXEPSS 0.3%CVE-2025-25208MEDIUMRhcl: authorino denial of service through authpolicy with sharedsecretref severityEPSS 0.3%CVE-2026-48525MEDIUMPyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWSEPSS 0.3%CVE-2026-30662MEDIUMConcreteCMS v9.4.7 contains a Denial of Service (DoS) vulnerability in the File Manager component. The 'download' method in 'concrete/controEPSS 0.3%CVE-2026-34445HIGHONNX: Malicious ONNX models can crash servers by exploiting unprotected object settings.EPSS 0.3%CVE-2026-10705LOWdask HLL hyperloglog.py nunique_approx resource consumptionEPSS 0.3%CVE-2024-1816MEDIUMUncontrolled Resource Consumption in GitLabEPSS 0.3%CVE-2024-57412HIGHAn issue in SunOS Omnios v5.11 allows attackers to cause a Denial of Service (DoS) via repeatedly sending crafted TCP packets.EPSS 0.3%CVE-2024-14036HIGHDräger Core 1.0.5 Denial of Service via Malformed SDC MessageEPSS 0.3%CVE-2025-69654HIGHA crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 (2025-12-1EPSS 0.3%CVE-2025-43706HIGHAn issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2400, 1580, 9110, W920,EPSS 0.3%CVE-2023-38210MEDIUMOther | Uncontrolled Resource Consumption (CWE-400)EPSS 0.3%CVE-2022-0669A flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected number of fds as ancillary data to VHOST_USEPSS 0.3%CVE-2025-63288HIGHIn Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service.EPSS 0.3%CVE-2025-49000LOWInvenTree has uncontrolled memory allocation via built-in label-sheet pluginEPSS 0.3%CVE-2026-0517MEDIUMDenial of Service in Secure Access Servers Prior to 14.20.EPSS 0.3%CVE-2026-41711MEDIUMPotential Denial of Service through crafted Sort ParametersEPSS 0.3%CVE-2025-27829HIGHAn issue was discovered in Stormshield Network Security (SNS) 4.3.x before 4.3.35. If multicast streams are enabled on different interfaces,EPSS 0.3%CVE-2026-22239CRITICALEmail Sending Vulnerability in BLUVOYIXEPSS 0.3%CVE-2025-7105MEDIUMDenial of Service via JavaScript Memory Overflow in danny-avila/librechatEPSS 0.3%