Falhas do tipo CWE-400

2.402 resultados
CVE-2025-54995MEDIUMAsterisk remotely exploitable leak of RTP UDP ports and internal resourcesEPSS 0.4%CVE-2026-49842HIGHFreeSWITCH: Pre-authentication bandwidth amplification via `mod_verto` speed-test framesEPSS 0.4%CVE-2024-45420MEDIUMZoom Apps - Uncontrolled Resource ConsumptionEPSS 0.4%CVE-2025-31210MEDIUMThe issue was addressed with improved UI. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7. Processing web content may lead toEPSS 0.4%CVE-2025-6493MEDIUMCodeMirror Markdown Mode markdown.js redosEPSS 0.4%CVE-2025-52288HIGHAssertion failure in function ngap_build_downlink_nas_transport in file src/amf/ngap-build.c, the Access and Mobility Management Function (AEPSS 0.4%CVE-2025-6492MEDIUMMarkText index.js getRecommendTitleFromMarkdownString redosEPSS 0.4%CVE-2024-7610MEDIUMUncontrolled Resource Consumption in GitLabEPSS 0.4%CVE-2024-42426MEDIUMDell PowerScale OneFS Versions 9.5.0.x through 9.8.0.x contain an uncontrolled resource consumption vulnerability. A low privilege remote atEPSS 0.4%CVE-2024-6501LOWNetworkmanager: denial of serviceEPSS 0.4%CVE-2024-56921HIGHAn issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect errEPSS 0.4%CVE-2023-3585MEDIUMchannel DoS by sharing a boards linkEPSS 0.4%CVE-2026-38637HIGHAn issue in the pthread_rwlockattr_setpshared() function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a cEPSS 0.4%CVE-2024-53693HIGHQTS, QuTS heroEPSS 0.4%CVE-2024-2446MEDIUMMattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to limit the number of @-mentioEPSS 0.4%CVE-2026-40481HIGHmonetr: Unauthenticated Stripe webhook reads attacker-sized request bodies before signature validationEPSS 0.4%CVE-2026-38640HIGHA reachable unwrap in the __assert_fail function (/assert/mod.rs) of relibc commit 61f42d allows attackers to cause a Denial of Service (DoSEPSS 0.4%CVE-2025-21548MEDIUMVulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.1.0EPSS 0.4%CVE-2026-28874HIGHThe issue was addressed with improved checks. This issue is fixed in iOS 26.4 and iPadOS 26.4. A remote attacker may cause an unexpected appEPSS 0.4%CVE-2026-48937MEDIUMA flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a `GOAWAY` frame. This vulnerability affectsEPSS 0.4%