Falhas do tipo CWE-400

2.402 resultados
CVE-2025-59471MEDIUMA denial of service vulnerability exists in self-hosted Next.js applications that have `remotePatterns` configured for the Image Optimizer. EPSS 0.4%CVE-2024-43789HIGHDenial of service by the absence of restrictions on replies to posts in DiscourseEPSS 0.4%CVE-2024-5055HIGHVulnerability of uncontrolled resource consumption in XAMPPEPSS 0.4%CVE-2025-55521MEDIUMAn issue in the component /settings/localisation of Akaunting v3.1.18 allows authenticated attackers to cause a Denial of Service (DoS) via EPSS 0.4%CVE-2026-50878HIGHAn issue in the attachment handling component of Feuerhamster MailForm v1.1.0 allows attackers to cause a Denial of Service (DoS) via a crafEPSS 0.4%CVE-2025-52961HIGHJunos OS Evolved: PTX Series except PTX10003: An unauthenticated adjacent attacker sending specific valid traffic can cause a memory leak in cfmman leading to FPC crash and restartEPSS 0.4%CVE-2025-70886HIGHAn issue in halo v.2.22.4 and before allows a remote attacker to cause a denial of service via a crafted payload to the public comment submiEPSS 0.4%CVE-2026-45047HIGHbird-lg-go: Fatal Out-of-Memory (OOM) Denial of Service via Unbounded JSON DecodingEPSS 0.4%CVE-2026-45664MEDIUMImageMagick: Policy Bypass in MNG coder couldEPSS 0.4%CVE-2024-47239MEDIUMDell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. A remote low privileged aEPSS 0.4%CVE-2026-23940HIGHDenial of Service via Oversized Package UploadEPSS 0.4%CVE-2026-22815MEDIUMAIOHTTP: Uncapped memory usage possible through aiohttp allowing unlimited trailer headersEPSS 0.4%CVE-2026-5316MEDIUMNothings stb stb_vorbis.c setup_free allocation of resourcesEPSS 0.4%CVE-2025-20162HIGHA vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a fuEPSS 0.4%CVE-2025-30476MEDIUMDell PowerScale InsightIQ, version 5.2, contains an uncontrolled resource consumption vulnerability. An unauthenticated attacker with remoteEPSS 0.4%CVE-2026-10069HIGHShibby Tomato miniupnpd resource consumptionEPSS 0.4%CVE-2018-16878MEDIUMA flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processesEPSS 0.4%CVE-2025-53054MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0EPSS 0.4%CVE-2025-53053MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.43, EPSS 0.4%CVE-2022-4986HIGHHirschmann EagleSDV Denial of Service via TLSEPSS 0.4%