Falhas do tipo CWE-835
323 resultadosCVE-2022-0778HIGHInfinite loop in BN_mod_sqrt() reachable when parsing certificatesEPSS 70.6%CVE-2024-20353HIGHA vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat DefensEPSS 63.3%KEVCVE-2023-34966HIGHSamba: infinite loop in mdssvc rpc service for spotlightEPSS 62.0%CVE-2019-5097MEDIUMA denial-of-service vulnerability exists in the processing of multi-part/form-data requests in the base GoAhead web server application in veEPSS 45.1%CVE-2024-50320HIGHAn infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.EPSS 31.2%CVE-2023-1718HIGHBitrix24 Denial-of-Service (DoS) via Improper File Stream AccessEPSS 24.1%CVE-2023-45363HIGHAn issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allEPSS 22.7%CVE-2022-46770HIGHqubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumptEPSS 21.5%CVE-2022-0711—A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. This flaw could allow an attacker to send EPSS 16.2%CVE-2018-1041—A vulnerability was found in the way RemoteMessageChannel, introduced in jboss-remoting versions 3.3.10, reads from an empty buffer. An attaEPSS 16.1%CVE-2019-3833HIGHOpenwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP rEPSS 15.2%CVE-2021-3737HIGHA flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls EPSS 11.6%CVE-2024-33623LOWA denial of service vulnerability exists in the Web Application functionality of LevelOne WBR-6012 R0.40e6. A specially crafted HTTP requestEPSS 11.4%CVE-2017-12626HIGHApache POI in versions prior to release 3.17 are vulnerable to Denial of Service Attacks: 1) Infinite Loops while parsing crafted WMF, EMF, EPSS 10.2%CVE-2016-6301HIGHThe recv_and_process_client_pkt function in networking/ntpd.c in busybox allows remote attackers to cause a denial of service (CPU and bandwEPSS 8.9%CVE-2020-7595HIGHxmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.EPSS 7.8%CVE-2016-6817HIGHThe HTTP/2 header parser in Apache Tomcat 9.0.0.M1 to 9.0.0.M11 and 8.5.0 to 8.5.6 entered an infinite loop if a header was received that waEPSS 7.2%CVE-2021-37714HIGHCrafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptionsEPSS 6.9%CVE-2021-20041—An unauthenticated and remote adversary can consume all of the device's CPU due to crafted HTTP requests sent to SMA100 /fileshare/sonicfileEPSS 6.8%CVE-2021-39140MEDIUMXStream can cause a Denial of ServiceEPSS 6.0%