CWE-248: CWE-248

An unauthenticated remote attacker can send crafted ICMPv6 messages to Cisco ASA or FTD devices with IPv6 enabled, causing the device to reload and cr...

CVE-2023-42447 is a denial-of-service vulnerability in blurhash-rs, a Rust library for encoding images into ASCII strings. Attackers can craft malicio...

Motorola EBTS/MBTS Site Controller devices expose a debug prompt on the serial port when encountering unhandled exceptions. This allows attackers with...

A vulnerability in Cisco IOS, IOS XE, and IOS XR Software allows authenticated remote attackers to cause denial of service by sending crafted SNMP req...

A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cause denial of service by sending crafted SNMP reque...

A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cause denial of service by sending crafted SNMP reque...

A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cause denial of service by sending crafted SNMP reque...

CVE-2023-0790 is an uncaught exception vulnerability in phpMyFAQ that can lead to denial of service or information disclosure. Attackers can trigger u...

This vulnerability in the Emmett framework allows unauthenticated attackers to send malformed Cookie headers that trigger unhandled CookieError except...

This vulnerability in Node.js causes applications to crash unrecoverably when deep recursion triggers 'Maximum call stack size exceeded' errors while ...

A protocol manipulation vulnerability in BLU-IC2 and BLU-IC4 devices allows attackers to cause denial of service by sending specially crafted network ...

This vulnerability in Alloy Core libraries allows attackers to cause denial-of-service (DoS) by sending malformed input to the eip712_signing_hash() f...

This vulnerability in Argo CD allows an unauthenticated attacker to crash the argocd-server process by sending a specially crafted Azure DevOps webhoo...

A vulnerability in PyTorch v2.7.0 causes a Name Error when models containing torch.cummin operations are compiled with Inductor, leading to Denial of ...

This vulnerability in Node.js allows remote attackers to crash the runtime by triggering an uncaught exception in the SignTraits::DeriveBits() cryptog...

This vulnerability in MediaTek wlan AP driver allows unauthenticated attackers within wireless range to potentially access sensitive information from ...

This vulnerability in the ArkUI framework's SVG parsing module allows attackers to cause denial of service by exploiting exception capture failures. I...

A vulnerability in MongoDB's mongos query router allows unauthenticated attackers to send specially crafted wire protocol messages that cause the serv...

This vulnerability allows unauthenticated attackers to crash the Anything-LLM server by sending malformed JSON payloads to the embeddable chat API end...

An unauthenticated denial-of-service vulnerability in librechat allows attackers to crash the server by sending a crafted payload. The vulnerability e...

This vulnerability in MediaTek network hardware allows remote attackers to cause a system hang (denial of service) without authentication or user inte...

This vulnerability in MediaTek wlan drivers allows remote attackers to cause denial of service by forcing client disconnections without authentication...

This vulnerability allows unauthenticated attackers to cause a denial-of-service condition on affected cameras by accessing a crafted URL. The attack ...

This vulnerability in Envoy proxy allows remote attackers to cause a denial-of-service (DoS) by sending incomplete UTF-8 strings that trigger an uncau...

This vulnerability allows attackers to send malformed Device Reset Locally command classes to temporarily deny service to end devices. When exploited,...

CVE-2023-3966 is a vulnerability in Open vSwitch where specially crafted Geneve packets can cause denial of service and invalid memory accesses when h...

This vulnerability in gRPC's TCP server on POSIX-compatible platforms allows attackers to cause denial of service by flooding the server with connecti...

This vulnerability in eprosima Fast DDS allows remote attackers to crash any Fast DDS process by triggering an uncaught BadParamException. It affects ...

This vulnerability involves improper exception handling in Huawei's communication framework, allowing attackers to trigger abnormal behavior in affect...

A vulnerability in Siemens Desigo building automation controllers allows attackers to send a specially crafted BACnet protocol packet that causes the ...

This vulnerability in Podium's @podium/layout and @podium/proxy modules allows attackers to cause denial of service by sending specially crafted HTTP ...

An unauthenticated attacker on the same network can send crafted traffic to Cisco CGR1K routers, causing the integrated wireless access point to stop ...

This vulnerability in Intel Unison software allows authenticated local users to trigger an uncaught exception that could lead to privilege escalation....

This vulnerability in Intel Ethernet Adapters and Controller I225 Manageability firmware allows a privileged user to trigger an uncaught exception, po...

AVEVA PI Data Archive products contain an uncaught exception vulnerability that allows authenticated users to crash critical subsystems, causing denia...

This vulnerability allows attackers to send continuous startMeasurement commands via unencrypted Bluetooth to affected medical devices, causing denial...

This CVE describes a null pointer dereference vulnerability in Huawei's image decoding module that can cause denial of service. Attackers can crash af...

This vulnerability allows an attacker to crash the UpdateService by tampering with the C++ CLI client during file transfers, disrupting update functio...

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in vLLM versions 0.8.0 through 0.9.0. Attackers can crash vLLM servers...

An unhandled exception vulnerability in LibreChat allows attackers to crash the server, causing denial of service. Attackers can exploit this by sendi...

An uncaught exception vulnerability in Intel RAID Web Console software allows authenticated local users to trigger a denial of service condition. This...

This vulnerability in IBM App Connect Enterprise allows authenticated users to trigger an uncaught exception, causing a denial of service (DoS) condit...

This CVE describes a deserialization vulnerability in the IPC module that could allow attackers to cause denial of service. The vulnerability affects ...

This vulnerability in MediaTek's flashc component allows local information disclosure due to an uncaught exception. Attackers with system execution pr...

CVE-2025-66578 is an authentication bypass vulnerability in xmlseclibs PHP library versions 3.1.3 and earlier. When processing invalid XML input durin...

In Part-DB versions before 1.17.3, any authenticated user can upload a profile picture with a misleading file extension (like .jpg.txt), causing a per...

An uncaught exception vulnerability in Gallagher Command Centre Server allows authorized privileged operators to crash the server intentionally. This ...

This vulnerability in IBM EntireX 11.1 allows a local user to cause a denial of service through an unhandled error condition. The issue stems from imp...