CWE:
 

Nic nie znaleziono w bazie WLB2

Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2024-09-10
Waiting for details
CVE-2024-45590
Updating...
 
 
body-parser is Node.js body parsing middleware. body-parser <1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3.

 
2024-08-15
Waiting for details
CVE-2024-40705
Updating...
 
 
IBM InfoSphere Information Server could allow an authenticated user to consume file space resources due to unrestricted file uploads. IBM X-Force ID: 298279.

 
2022-05-05
Low
CVE-2021-38447
Vendor: Objectcomputing
Software: Opendds
 
 
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition.

 
2021-03-23
Medium
CVE-2021-21359
Vendor: Typo3
Software: Typo3
 
 
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 9.5.25, 10.4.14, 11.1.1 requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as error message from another page. This leads to a scenario in which the application is calling itself recursively - amplifying the impact of the initial attack until the limits of the web server are exceeded. This is fixed in versions 9.5.25, 10.4.14, 11.1.1.

 
2018-08-17
Medium
CVE-2018-15492
Updating...
 
 
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.

 

 

Copyright 2024, cxsecurity.com

 

Back to Top