Falhas do tipo CWE-400

2.401 resultados
CVE-2025-2820MEDIUMDenial of ServiceEPSS 0.5%CVE-2023-40593MEDIUMDenial of Service (DoS) in Splunk Enterprise Using a Malformed SAML RequestEPSS 0.5%CVE-2023-33958MEDIUMDefault `maxSignatureAttempts` in `notation verify` enables an endless data attack in notationEPSS 0.5%CVE-2025-50095MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 9.0.0-9.EPSS 0.5%CVE-2025-53023MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-EPSS 0.5%CVE-2022-1677In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into EPSS 0.5%CVE-2025-50094MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.42, 8.4.5 EPSS 0.5%CVE-2025-49722MEDIUMWindows Print Spooler Denial of Service VulnerabilityEPSS 0.5%CVE-2026-54092MEDIUMFile Browser: DoS Vulnerability on Public Login APIEPSS 0.5%CVE-2026-22258HIGHSuricata DCERPC: unbounded fragment buffering leads to memory exhaustionEPSS 0.5%CVE-2022-3510HIGHParsing issue in protobuf message-type extensionEPSS 0.5%CVE-2026-28908HIGHA denial of service issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, mEPSS 0.5%CVE-2026-25819HIGHHMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 alEPSS 0.5%CVE-2024-44160HIGHA buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7, macOS VentuEPSS 0.5%CVE-2022-47556MEDIUMUncontrolled Resource Consumption in Ormazabal productsEPSS 0.5%CVE-2026-50889HIGHAn input handling flaw in the HTTP refresh token process of LLDAP v0.6.2 allows attackers to cause a Denial of Service (DoS) via sending a cEPSS 0.5%CVE-2026-33204HIGHSimpleJWT has an Unauthenticated Denial of Service via JWE header tamperingEPSS 0.5%CVE-2025-55634HIGHIncorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_250EPSS 0.5%CVE-2024-41727HIGHBIG-IP TMM vulnerabilityEPSS 0.5%CVE-2024-43806MEDIUM`rustix::fs::Dir` iterator with the `linux_raw` backend can cause memory explosionEPSS 0.5%