The ares_set_sortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity. CVSS v3.1 Base Score 8.6 CVSS v3.1 Vector CVSS:3.1/AV:N/...
An attacker may cause a denial of service situation of all socket-based communication of the affected products if the result server is enabled. CVSS v3.1 Base Score 8.6 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H/E:P/RL:O/RC:C CWE CWE-770: Allocation of ...
Customer-initiated penetration testing, port and vulnerability scanning, spoofing, web application scanning, protocol flooding, Denial-of-Service attacks, installation of malware, attempts to decompile source code, or any other actions that may disrupt the cloud-hosted production environment are explicitly...
OpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very expensive calls to tcp_sack_option() for every incoming SACK packet which can lead to a denial of service. CVSS v3.1 Base Score 7.5 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U...
A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init function. CVSS v3.1 Base Score 6.6 CVSS Vector CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C CWE CWE-416: Use After Free...
it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list. ...