Falhas do tipo CWE-400

2.402 resultados
CVE-2025-37161HIGHUnauthenticated Remote Denial-of-Service (DoS) Vulnerability in Web Management InterfaceEPSS 0.3%CVE-2025-70059HIGHAn issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in YMFE yapi v1.12.0 and allows attackers to cause a denialEPSS 0.3%CVE-2025-66303MEDIUMGrav is vulnerable to a DOS on the admin panelEPSS 0.3%CVE-2026-50196HIGHSteeltoe.Discovery.Eureka: Unrecognized DataCenterInfo.Name poisons entire registry fetchEPSS 0.3%CVE-2025-30188HIGHMalicious or unintentional API requests can be used to add significant amount of data to caches. Caches may evict information that is requirEPSS 0.3%CVE-2025-64388CRITICALDenial of service through specific packetsEPSS 0.3%CVE-2026-40016MEDIUMAttacker can upload a malicious Sieve script over ManageSieve service (or locally) to bypass configured CPU time limits for Sieve up to 130 EPSS 0.3%CVE-2026-29856HIGHAn issue in the VirtualHost configuration handling/parser component of aaPanel v7.57.0 allows attackers to cause a Regular Expression DenialEPSS 0.3%CVE-2026-21948MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.EPSS 0.3%CVE-2026-21952MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 9.0.0-9.5.0EPSS 0.3%CVE-2026-21941MEDIUMVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.EPSS 0.3%CVE-2026-34290HIGHVulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that iEPSS 0.3%CVE-2021-20265A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in the Linux kernel when a signal was pending. TEPSS 0.3%CVE-2025-41360HIGHUncontrolled resource consumption vulnerability in IDF and ZLFEPSS 0.3%CVE-2024-57724MEDIUMlunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell.EPSS 0.3%CVE-2026-48208MEDIUMDenial-of-Service via SVG Rendering in TicketEPSS 0.3%CVE-2024-12579MEDIUMMinify HTML <= 2.1.10 - - Regular Expressions Denial of ServiceEPSS 0.3%CVE-2026-30405HIGHAn issue in GoBGP gobgpd v.4.2.0 allows a remote attacker to cause a denial of service via the NEXT_HOP path attributeEPSS 0.3%CVE-2026-41324HIGHbasic-ftp vulnerable to denial of service via unbounded memory consumption in Client.list()EPSS 0.3%CVE-2026-40988HIGHUnbounded DEFLATE Inflation in SAML 2.0 Service ProviderEPSS 0.3%