Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Twisted: Denial of Service (DoS) in twisted.names via Crafted DNS Compression Pointer Chains
Netty: Resource exhaustion in MqttDecoder
Netty: HttpContentDecompressor maxAllocation bypass via Content-Encoding: br/zstd/snappy enables decompression bomb DoS
Netty: Lz4FrameDecoder resource exhaustion
Netty: DNS Codec Input Validation Bypass in Netty (Encoder + Decoder)
Hono: bodyLimit() can be bypassed for chunked / unknown-length requests
Granian: Unauthenticated DoS via WebSocket subprotocol header panic
Micronaut Framework: Unbounded formattersCache in TimeConverterRegistrar Allows Memory Exhaustion via Accept-Language Header
Micronaut Framework: Unbounded bundleCache in ResourceBundleMessageSource Allows Memory Exhaustion via Accept-Language Header
Deskflow: TLS multiplexer DoS on failed `SSL_accept`
basic-ftp allows a malicious FTP server to cause client-side denial of service via unbounded multiline control response buffering
CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)
CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)
CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)
CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)
Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)
Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)
Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)
Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)
phpseclib: CVE-2024-27355 mitigation bypass — OID amplification DoS in ASN1::decodeOID()
Showing 1 - 20 of 1,000+ results