CWE-405: CWE-405

CVE-2025-42874 is a remote code execution vulnerability in SAP NetWeaver's Xcelsius remote service that allows attackers with network access and high ...

CVE-2026-0485 is a denial-of-service vulnerability in SAP BusinessObjects BI Platform that allows unauthenticated attackers to crash and restart the C...

CVE-2026-22774 is a denial-of-service vulnerability in the Svelte devalue JavaScript library where specially crafted inputs cause excessive CPU and me...

CVE-2026-22775 is a denial-of-service vulnerability in the Svelte devalue JavaScript library where specially crafted inputs cause excessive CPU and me...

This CVE describes a resource exhaustion vulnerability in Sigstore Timestamp Authority where malicious requests with excessively long OIDs or malforme...

This vulnerability in Fulcio allows attackers to cause resource exhaustion through a denial-of-service attack by sending malicious OIDC identity token...

A denial-of-service vulnerability in BIND DNS servers where querying a specially crafted zone containing malformed DNSKEY records causes CPU exhaustio...

This high-severity Denial of Service vulnerability in Confluence Data Center allows attackers to make resources unavailable to legitimate users by dis...

This vulnerability in golang-jwt allows attackers to cause denial of service through resource exhaustion by sending malicious JWT tokens with many per...

This CVE describes a resource exhaustion vulnerability in BIND DNS servers where specially crafted zones can generate responses with excessive records...

CVE-2025-24356 is a UDP amplification vulnerability in fastd VPN daemon that allows attackers to spoof source addresses and trigger handshake packets,...

This vulnerability in Suricata allows attackers to send specially crafted DNS messages with compressed resource names that can cause excessive resourc...

CVE-2024-45590 is a denial-of-service vulnerability in body-parser middleware for Node.js applications. Attackers can send specially crafted URL-encod...

This vulnerability in the Botan cryptography library allows attackers to cause denial of service by presenting specially crafted X.509 certificates wi...

An unauthenticated denial-of-service vulnerability exists in Lenovo's SMM v1, SMM v2, and FPC management web servers that allows remote attackers to c...

This CVE describes a Missing Authorization Check vulnerability in SAP S/4 HANA Private Cloud Financials General Ledger. Authenticated attackers with l...

This vulnerability allows authenticated users with standard privileges in SAP BusinessObjects Business Intelligence Platform to execute a specific que...

An authenticated Zabbix user (including Guest accounts) can send specially crafted parameters to /imgstore.php, causing excessive CPU consumption on t...

This CVE describes a denial-of-service vulnerability in SAPUI5/OpenUI5 where malformed markdown input triggers an infinite loop in the outdated markdo...

Marshmallow library versions 3.0.0rc1-3.26.1 and 4.0.0-4.1.1 contain a denial of service vulnerability in Schema.load() with many=True parameter. Atta...

This vulnerability in the Botan cryptography library allows denial-of-service attacks via quadratic complexity in X.509 certificate name constraint va...

CVE-2025-31987 is a resource exhaustion vulnerability in HCL Connections Docs where improper validation of uploaded documents can lead to denial of se...