CWE-1284: CWE-1284

This vulnerability in IBM Db2 allows authenticated users to cause denial of service by submitting specially crafted queries that trigger improper neut...

IBM Db2 databases are vulnerable to denial of service attacks when processing specially crafted queries due to insufficient input validation. This aff...

This vulnerability in IBM Db2 allows a local user to cause a denial of service by exploiting improper neutralization of special elements in data query...

This vulnerability in IBM Db2 allows a local user to cause a denial of service by exploiting improper neutralization of special elements in data query...

This vulnerability in IBM Db2 allows authenticated users to cause a denial of service by excessively using a global variable. It affects IBM Db2 for L...

This vulnerability allows attackers to trigger a buffer overflow in Filebeat's Syslog parser or Libbeat Dissect processor, causing the Filebeat proces...

This vulnerability in IBM Controller and Cognos Controller allows authenticated users to cause denial of service by sending specially crafted input th...

This vulnerability in MongoDB Server allows oversized BSON documents to bypass initial size validation in time series processing, causing an assertion...

This vulnerability in IBM Cloud Pak for Business Automation allows authenticated users to cause denial of service by sending specially crafted input t...

Authenticated users in GitLab can create tokens with excessively large names, causing disruption to token listing and administrative operations. This ...

This vulnerability allows unauthenticated users to access unpublished page previews in Mautic via predictable URLs. This could expose draft content or...

IBM InfoSphere Information Server 11.7 contains an improper input validation vulnerability in its GUI component. Authenticated users can cause the GUI...

This vulnerability in The Events Calendar BookIt WordPress plugin allows attackers to manipulate hidden form fields to bypass price validation. It aff...

This vulnerability allows authenticated users in SailPoint's Identity Security Cloud to access job processing metadata from other tenants, potentially...

A length validation vulnerability in multiple Samsung Exynos mobile processors allows attackers to trigger denial of service conditions. This affects ...

This vulnerability allows remote unauthenticated attackers to send specially crafted packets to TCP port 683 on Mitsubishi Electric CNC Series control...

A vulnerability in the Linux kernel's DAMON (Data Access MONitor) subsystem allows kernel panic when invalid memory migration requests are made. This ...

This vulnerability in IBM Cloud Pak for Business Automation allows authenticated users to cause denial of service or data corruption by sending improp...

This vulnerability in IBM Db2 allows authenticated users to cause a denial of service by exploiting improper input sanitization in the RPSCAN feature'...

This vulnerability in openrsync allows a client to crash the rsync server by sending specially crafted data with a zero-length block. The server fails...

This vulnerability in the Bonus for Woo WordPress plugin allows attackers to bypass access controls by manipulating input quantities. It affects all W...

This vulnerability affects Arista EOS devices with 802.1X authentication configured. During Accelerated Software Upgrade (ASU) restarts, only the firs...

This vulnerability in AMD processors allows a privileged attacker to bypass SEV-SNP memory integrity protections by exploiting improper handling of in...

This vulnerability allows attackers with existing system privileges to send malformed commands to Power Management Firmware, potentially disrupting te...

A buffer length validation vulnerability in GoBGP's MRT packet parsing allows attackers to cause denial of service or potentially execute arbitrary co...

This vulnerability in SourceCodester Food Ordering Management System 1.0 allows attackers to manipulate payment calculations by exploiting improper va...

This vulnerability in zlib's crc32_combine64 and crc32_combine_gen64 functions allows an attacker to cause denial of service via CPU consumption due t...

CVE-2026-0925 is an improper input validation vulnerability in Tanium Discover that could allow attackers to manipulate data inputs. This affects orga...

This vulnerability in Mitsubishi Electric MELSEC iQ-R Series PLCs allows unauthenticated attackers to read sensitive device data and control programs,...

This vulnerability allows remote attackers with valid player sessions to crash PocketMine-MP game servers by sending malicious inventory transaction r...

This vulnerability allows non-secure processors to impersonate secure processors when making PSCI requests in AMD Versal Adaptive SoC's Trusted Firmwa...

This vulnerability in AMD Trusted Firmware (TF-A) fails to properly validate the security state of calling processors, potentially allowing non-secure...

N-central versions before 2025.4 can generate session IDs for unauthenticated users, potentially allowing attackers to bypass authentication mechanism...