Falhas do tipo CWE-617
374 resultadosCVE-2023-23759HIGHThere is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be triggered remotely. This behavior requiresEPSS 0.7%CVE-2025-15531MEDIUMOpen5GS context.c sgwc_bearer_add assertionEPSS 0.7%CVE-2025-15530MEDIUMOpen5GS s11-handler.c assertionEPSS 0.7%CVE-2020-15197MEDIUMDenial of Service in TensorflowEPSS 0.7%CVE-2024-53429HIGHOpen62541 v1.4.6 is has an assertion failure in fuzz_binary_decode, which leads to a crash.EPSS 0.7%CVE-2024-39697HIGHphonenumber panics on parsing crafted phonenumber inputsEPSS 0.7%CVE-2023-37024HIGHA reachable assertion in the Mobile Management Entity (MME) of Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fEPSS 0.7%CVE-2025-20666MEDIUMIn Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected EPSS 0.7%CVE-2024-32475HIGHEnvoy RELEASE_ASSERT using auto_sni with :authority header > 255 bytesEPSS 0.7%CVE-2026-20401MEDIUMIn Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected EPSS 0.7%CVE-2024-8768HIGHVllm: a completions api request with an empty prompt will crash the vllm api server.EPSS 0.7%CVE-2023-33199MEDIUMmalformed proposed intoto v0.0.2 entries can cause a panic in RekorEPSS 0.7%CVE-2026-1738MEDIUMOpen5GS SGWC context.c sgwc_tunnel_add assertionEPSS 0.7%CVE-2026-37228HIGHFlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buEPSS 0.6%CVE-2025-5501MEDIUMOpen5GS NGAP PathSwitchRequest Message ngap-handler.c ngap_handle_path_switch_request_transfer assertionEPSS 0.6%CVE-2024-45403LOWH2O assertion failure when HTTP/3 requests are cancelledEPSS 0.6%CVE-2026-37229HIGHFlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attackeEPSS 0.6%CVE-2022-31009MEDIUMDoS vulnerability: Invalid Accent ColorsEPSS 0.6%CVE-2024-34475HIGHOpen5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmm_state_authenticationEPSS 0.6%CVE-2026-1736MEDIUMOpen5GS SGWC s11-handler.c assertionEPSS 0.6%