Threats Tagged 'cwe-825'

IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_mem_cache.

Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are not affected.

CVE-2026-32873 is a high-severity vulnerability in the Gleam web server 'ewe' versions 0. 8. 0 through 3. 0. 4. The flaw exists in the handle_trailers function, where rejected trailer headers cause an infinite recursion loop, leading to 100% CPU usage and a denial-of-service condition. This occurs because the function repeatedly re-parses the same header without advancing, permanently wedging the BEAM process. Exploitation requires no authentication or user interaction and can be triggered remotely via chunked HTTP requests. The vulnerability is fixed in version 3. 0.

HighVulnerabilityUnited StatesGermanyUnited Kingdom+7#cve#cve-2026-32873#cwe-825

CVE-2026-30978 is a high-severity use-after-free vulnerability in the InternationalColorConsortium's iccDEV library versions prior to 2. 3. 1. 5. The flaw exists in the CIccCmm::AddXform() function, where a heap-use-after-free leads to invalid virtual pointer dereference and application crash. Exploitation requires local access and user interaction but no privileges. The vulnerability impacts confidentiality, integrity, and availability, with a CVSS score of 7. 8. No known exploits are currently reported in the wild. The issue is fixed in version 2.

HighVulnerabilityUnited StatesGermanyJapan+7#cve#cve-2026-30978#cwe-416

A mongoc_bulk_operation_t may read invalid memory if large options are passed.

MediumVulnerabilityGermanyFranceUnited Kingdom+3#cve#cve-2025-12119#cwe-825

A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CriticalVulnerabilityGermanyFranceUnited Kingdom+5#cve#cve-2024-23310#cwe-825

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file

HighVulnerabilityUnited StatesGermanyJapan+6#cve#cve-2024-8250#cwe-825