CWE-1325
13 CVEs classified under CWE-1325. Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-2240 | High | 7.5 | 2025-03-12 | A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability is externally triggered when cal… |
CVE-2026-8199 | Medium | 6.5 | 2026-05-13 | An authenticated user can cause excess memory usage via bitwise match expression AST processing of $bitsAllSet, $bitsAnySet, $bitsAllClear, and $bitsAnyClear… |
CVE-2024-2511 | Medium | 5.9 | 2024-04-08 | Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may e… |
CVE-2026-6869 | Medium | 5.5 | 2026-04-30 | WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service |
CVE-2026-6867 | Medium | 5.5 | 2026-04-30 | SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service |
CVE-2026-6535 | Medium | 5.5 | 2026-04-30 | Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service |
CVE-2026-6533 | Medium | 5.5 | 2026-04-30 | Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service |
CVE-2025-13945 | Medium | 5.5 | 2025-12-03 | HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service |
CVE-2023-52891 | Medium | 5.3 | 2024-07-09 | A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.5), SIMATIC Energy Manager PRO (All versions < V7.5), SIMATIC IPC DiagBa… |
CVE-2023-28968 | Medium | 5.3 | 2023-04-17 | An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep Packet Inspection-Decoder (JDPI-Decoder) Application Signature… |
CVE-2026-3201 | Medium | 4.7 | 2026-02-25 | USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service |
CVE-2026-24819 | | 2026-01-27 | Improperly Controlled Sequential Memory Allocation vulnerability in foxinmy weixin4j (weixin4j-base/src/main/java/com/foxinmy/weixin4j/util modules). This vuln… | |
CVE-2021-43174 | | 2021-11-09 | NLnet Labs Routinator versions 0.9.0 up to and including 0.10.1, support the gzip transfer encoding when querying RRDP repositories. This encoding can be used… |