An exception is thrown from a function, but it is not caught.
206 vulnerabilities with CWE-248
CVE-2025-0657
HIGH
Automated Logic and Carrier i-Vu Gen5 router drv_gen5_106-01-2380 -...
CVE-2025-8870
MEDIUM
Arista Networks EOS >=4.34.2FX <4.34.2FX - Denial of Service via Serial Console Input
CVSS 4.9
CVE-2025-12423
HIGH
BLU-IC2 and BLU-IC4 Firmware < 1.20 - Denial of Service via Protocol Manipulation
CVSS 7.5
CVE-2025-59462
MEDIUM
SICK tloc100-100_firmware - Denial of Service via C++ CLI Client Tampering
CVSS 6.5
CVE-2025-48430
MEDIUM
Command Centre Server <9.30.2482, <9.20.2819, <9.10.3672, <9.00.383...
CVSS 5.5
CVE-2025-62370
HIGH
alloy-dyn-abi < 0.8.26 and 1.0.0-1.4.1 - Denial of Service via Malformed TypedData Input
CVSS 7.5
CVE-2025-59229
MEDIUM
Microsoft 365 Apps - Denial of Service via Uncaught Exception
CVSS 5.5
CVE-2025-9124
HIGH
Rockwell Automation Compact GuardLogix 5370 - Denial of Service via Crafted CIP Unconnected Explicit Message
CVE-2025-59538
HIGH
Argo CD <3.2.0-rc1 - Use After Free
CVSS 7.5
CVE-2025-55557
HIGH
PyTorch < 2.7.0 - Denial of Service via Inductor Compilation of torch.cummin
CVSS 7.5
CVE-2025-55553
HIGH
PyTorch < 2.7.0 - Denial of Service via proxy_tensor.py Syntax Error
CVSS 7.5
CVE-2025-35436
MEDIUM
CISA Thorium < 1.1.2 - Unauthenticated Denial of Service via Crafted Email Address
CVSS 5.3
CVE-2025-59014
LOW
TYPO3 CMS 11.0.0-11.5.47 12.0.0-12.4.36 13.0.0-13.4.17 - Authenticated Denial of Service via Bookmark Toolbar
CVSS 2.7
CVE-2025-54777
MEDIUM
Konica Minolta bizhub series - Denial of Service via Malformed S/MIME Email Certificate Import
CVSS 4.3
CVE-2025-55194
MEDIUM
Part-DB < 1.17.3 - Authenticated Denial of Service via Profile Picture Upload
CVSS 5.7
CVE-2025-47281
HIGH
Kyverno < 1.14.2 - Denial of Service via JMESPath Variable Substitution
CVSS 7.7
CVE-2025-54134
MEDIUM
HAX CMS NodeJS < 11.0.9 - Authenticated Denial of Service via Missing URL Parameters
CVSS 6.5
CVE-2025-7338
HIGH
multer >=1.4.4-lts.1 <2.0.2 - Denial of Service via Malformed Multi-Part Upload Request
CVSS 7.5
CVE-2025-53620
CRITICAL
@builder.io/qwik-city <1.13.0 - DoS
CVE-2025-53366
HIGH
mcp < 1.9.4 - Denial of Service via Malformed Request Validation Error
CVE-2025-53365
HIGH
MCP Python SDK <1.10.0 - Use After Free
CVE-2025-44019
HIGH
AVEVA PI Data Archive <2018 SP3 P4, 2023; PI Server <2018 SP3 P6, 2023 - Authenticated DoS via Uncaught Exception
CVSS 7.1
CVE-2025-36539
MEDIUM
AVEVA PI Data Archive 2023-2023 P1/2018 SP3 P4-P6 - Authenticated DoS via Uncaught Exception
CVSS 6.5
CVE-2025-48907
MEDIUM
HarmonyOS - Denial of Service via IPC Module Deserialization
CVSS 6.2
CVE-2025-48997
HIGH
multer >=1.4.4-lts.1 <2.0.1 - Denial of Service via Empty String Field Name
Details
Vulnerabilities
206