dos Archives • Page 2 of 6 • Daily CyberSecurity

Apache Struts 2 DoS Flaw (CVE-2025-66675) Risks Server Crash via File Leak in Multipart Request Processing CVE-2024-53677 Apache Struts 2 DoS, File Leak Vulnerability

CVE-2024-53677 Apache Struts 2 DoS, File Leak Vulnerability

Apache Struts 2 DoS Flaw (CVE-2025-66675) Risks Server Crash via File Leak in Multipart Request Processing

Ddos December 11, 2025

A significant denial-of-service (DoS) vulnerability has been discovered in Apache Struts 2, the widely used open-source framework...

High-Severity Jenkins Flaws Risk Unauthenticated DoS via HTTP CLI and XSS Via Coverage Reports Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

High-Severity Jenkins Flaws Risk Unauthenticated DoS via HTTP CLI and XSS Via Coverage Reports

Ddos December 11, 2025

The maintainers of Jenkins, the world’s leading open-source automation server, have issued a critical security advisory addressing...

High-Severity Duc Disk Tool Flaw (CVE-2025-13654) Risks DoS and Information Leak via Integer Underflow Duc Buffer Overflow, Linux Disk Tool Flaw

High-Severity Duc Disk Tool Flaw (CVE-2025-13654) Risks DoS and Information Leak via Integer Underflow

Ddos December 8, 2025

A stack-based buffer overflow vulnerability has been discovered in Duc, a popular open-source tool used for indexing...

urllib3 Flaws Risk Client DoS via Unbounded Decompression and Streaming Resource Exhaustion urllib3 DoS, Decompression Bomb

urllib3 Flaws Risk Client DoS via Unbounded Decompression and Streaming Resource Exhaustion

Ddos December 8, 2025

The maintainers of urllib3, the ubiquitous HTTP client for Python, have issued a security advisory detailing two...

NVIDIA Triton Server Patches Two High-Severity DoS Flaws, Risking Critical AI Inference Disruption NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

NVIDIA Triton Server Patches Two High-Severity DoS Flaws, Risking Critical AI Inference Disruption

Ddos December 5, 2025

NVIDIA has issued a security bulletin regarding its Triton Inference Server, a cornerstone tool used by MLOps...

CVE-2025-64775: Apache Struts “File Leak” Vulnerability Threatens Disk Exhaustion Apache Struts 2 Vulnerability CVE-2025-68493 CVE-2021-31805 Struts DoS, File Upload Leak

Apache Struts 2 Vulnerability CVE-2025-68493 CVE-2021-31805 Struts DoS, File Upload Leak

CVE-2025-64775: Apache Struts “File Leak” Vulnerability Threatens Disk Exhaustion

Ddos December 2, 2025

The Apache Software Foundation has issued an important advisory regarding a significant Denial of Service (DoS) vulnerability...

Critical CVE-2025-65015 Vulnerability in joserfc Could Let Attackers Exhaust Server Resources via Oversized JWT Tokens joserfc DoS, JWT Logging Flaw

Critical CVE-2025-65015 Vulnerability in joserfc Could Let Attackers Exhaust Server Resources via Oversized JWT Tokens

Ddos November 20, 2025

A widely used Python library implementing JOSE standards, joserfc, has disclosed a critical uncontrolled resource consumption vulnerability—tracked...

PAN-OS Flaw (CVE-2025-4619) Allows Unauthenticated Firewall Reboot via Single Crafted Packet PAN-OS DoS, Unauthenticated Reboot

PAN-OS Flaw (CVE-2025-4619) Allows Unauthenticated Firewall Reboot via Single Crafted Packet

Ddos November 13, 2025

Palo Alto Networks has issued a security advisory for a newly discovered denial-of-service (DoS) vulnerability affecting several...

Brash Attack: Critical Chromium Flaw Allows DoS via Simple Code Injection Chrome 14-day update cycle Chromium JPEG-XL Image Format Debate Chromium DoS, document.title Browser Muting, iframe Media Supporters of Chromium-based Browsers

Chrome 14-day update cycle Chromium JPEG-XL Image Format Debate Chromium DoS, document.title Browser Muting, iframe Media Supporters of Chromium-based Browsers

Brash Attack: Critical Chromium Flaw Allows DoS via Simple Code Injection

Ddos October 31, 2025

Google’s Chromium, developed by Google, forms the foundation of many modern browsers — yet researchers have uncovered...

Progress Patches High-Severity Vulnerability in MOVEit Transfer AS2 Module (CVE-2025-10932) CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

Progress Patches High-Severity Vulnerability in MOVEit Transfer AS2 Module (CVE-2025-10932)

Ddos October 31, 2025

Progress Software Corporation has issued a security advisory warning of a high-severity vulnerability in its MOVEit Transfer...

GitLab Patches High Runner Hijacking Flaw (CVE-2025-11702) and Multiple DoS Vulnerabilities GitLab security updates Duo AI flaw fixed GitLab Runner Hijack, DoS Fix GitLab GraphQL Flaws, CVE-2025-11340 CVE-2024-9693 GitLab vulnerability, XSS

GitLab security updates Duo AI flaw fixed GitLab Runner Hijack, DoS Fix GitLab GraphQL Flaws, CVE-2025-11340 CVE-2024-9693 GitLab vulnerability, XSS

GitLab Patches High Runner Hijacking Flaw (CVE-2025-11702) and Multiple DoS Vulnerabilities

Ddos October 22, 2025

GitLab has released versions 18.5.1, 18.4.3, and 18.3.5 for both Community Edition (CE) and Enterprise Edition (EE)...

Cisco Patches High-Severity CVE-2025-20350 DoS Flaw in Desk and IP Phones Cisco Phone DoS, CVE-2025-20350 Cisco SNMP Flaw CVE-2025-20352 CVE-2024-20398 & CVE-2024-20381 CVE-2025-20206

Cisco Phone DoS, CVE-2025-20350 Cisco SNMP Flaw CVE-2025-20352 CVE-2024-20398 & CVE-2024-20381 CVE-2025-20206

Cisco Patches High-Severity CVE-2025-20350 DoS Flaw in Desk and IP Phones

Ddos October 17, 2025

Cisco has released security updates to patch two vulnerabilities (CVE-2025-20350 and CVE-2025-20351) affecting multiple Cisco Desk Phone...

Critical Denial-of-Service Vulnerability Discovered in HAProxy

Ddos October 6, 2025

A newly discovered vulnerability in HAProxy, the widely used open-source reverse proxy and load balancer, could allow...

DoS Flaws in Argo CD: Unauthenticated Attackers Can Crash Kubernetes Server with Single Request Argo CD Secret Leak CVE-2026-42880 CVE-2024-28175 Argo CD DoS, Webhook Flaws

Argo CD Secret Leak CVE-2026-42880 CVE-2024-28175 Argo CD DoS, Webhook Flaws

DoS Flaws in Argo CD: Unauthenticated Attackers Can Crash Kubernetes Server with Single Request

Ddos October 2, 2025

The Argo CD project has released patches addressing several denial-of-service (DoS) vulnerabilities that could allow attackers to...

Rack Security Update: High-Severity Flaw Bypasses Parameter Limit, Exposing Apps to DoS Attacks Rack DoS Bypass, CVE-2025-59830

Rack Security Update: High-Severity Flaw Bypasses Parameter Limit, Exposing Apps to DoS Attacks

Ddos September 26, 2025

The Rack project, a key Ruby library providing a minimal and modular interface for web application development,...

GitLab Fixes High-Severity DoS Flaws: Unauthenticated Attackers Could Crash Instances GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab Fixes High-Severity DoS Flaws: Unauthenticated Attackers Could Crash Instances

Ddos September 26, 2025

GitLab has released security updates for versions 18.4.1, 18.3.3, and 18.2.7 of its Community Edition (CE) and...

Jenkins Patches High-Severity Vulnerabilities, Including a DoS Flaw Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins Patches High-Severity Vulnerabilities, Including a DoS Flaw

Ddos September 18, 2025

Jenkins, one of the most widely used open-source automation servers, has released a new security advisory addressing...

KSMBDrain (CVE-2025-38501): Linux Kernel Flaw Allows Remote DoS Attacks, PoC Available Linux DoS CVE-2025-38501

KSMBDrain (CVE-2025-38501): Linux Kernel Flaw Allows Remote DoS Attacks, PoC Available

Ddos September 17, 2025

A newly disclosed vulnerability in the Linux kernel’s KSMBD subsystem has been assigned CVE-2025-38501, allowing remote attackers...

CVE-2025-58754: Axios Vulnerability Puts Node.js Processes at Risk of DoS Attacks Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw