Search Vulnerabilities

Nimiq network-libp2p: Untrusted peer can wedge DHT

Routinator crashes on specifically crafted RRDP XML files

Routinator exits when accepting an incoming HTTP or RTR connection fails

Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws

PyJWT: PyJWKClient unbounded JWKS endpoint requests via attacker-controlled kid values (DoS)

free5GC: NEF crashes via logger.Fatal on PFD notification delivery failure (attacker-controlled notifyUri)

free5GC: NRF POST /oauth2/token structured-form parser type-confusion panic family (Reflect.Set on incompatible types)

opentelemetry-js: Prometheus exporter process crash via malformed HTTP request

IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetails CLI tool that crashes with undefined subroutine on Info-ZIP Unix Extra Fie...

Granian: DoS via WSGI response header panic

multiparty vulnerable to Denial of Service via Uncaught Exception in filename* parameter parsing

nimiq-primitives: Node crash due to missing interlink validation in election macro block proposals

.NET Framework Denial of Service Vulnerability

SvelteKit's invalidated redirect in handle hook causes Denial-of-Service

RustDesk Client Accepts Unauthenticated stop-service Command via Strategy Payload

Permission bypass vulnerability in the system service framework

psd-tools: Compression module has unguarded zlib decompression, missing dimension validation, and hardening gaps

Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future

Caddy's mTLS client authentication silently fails open when CA certificate file is missing or malformed

Cube Denial of Service (DoS) - An authenticated attacker can crash the server by sending a specially crafted request