CWE-400

2,909 vulnerabilities with CWE-400

CVE-2026-33268 MEDIUM

Nanoleaf Lines unauthenticated firmware file store

CVSS 6.5

CVE-2026-28874 HIGH

Apple Ios And Ipados < 26.4 - Denial of Service

CVSS 7.5

CVE-2026-33538 HIGH

Parse Server: Denial of service via unindexed database query for unconfigured auth providers

CVSS 7.5

CVE-2026-33474 MEDIUM

Vikunja Affected by DoS via Image Preview Generation

CVSS 6.5

CVE-2026-30662 MEDIUM

ConcreteCMS 9.4.7 - DoS

CVSS 6.5

CVE-2026-30653 HIGH

Free5GC <=4.2.0 - DoS

CVSS 7.5

CVE-2026-4727 HIGH

Denial-of-service in the Libraries component in NSS

CVSS 7.5

CVE-2026-4726 HIGH

Firefox and Thunderbird - Denial of Service in XML Component

CVSS 7.5

CVE-2026-4704 HIGH

Denial-of-service in the WebRTC: Signaling component

CVSS 7.5

CVE-2026-33176 HIGH

Active Support <8.1.2.1 - DoS

CVSS 7.5

CVE-2026-33169 MEDIUM

Active Support <8.1.2.1/8.0.4.1/7.2.3.1 - DoS

CVSS 5.3

CVE-2026-4539 LOW

pygments archetype.py AdlLexer redos

CVSS 3.3

CVE-2026-33204 HIGH

SimpleJWT has an Unauthenticated Denial of Service via JWE header tampering

CVSS 7.5

CVE-2026-33155 HIGH

DeepDiff has Memory Exhaustion DoS through SAFE_TO_IMPORT

CVSS 7.5

CVE-2026-33123 MEDIUM

pypdf has inefficient decoding of array-based streams

CVSS 6.5

CVE-2026-25667 HIGH

.NET 8.0-9.0 - DoS

CVSS 7.5

CVE-2026-29856 HIGH

aaPanel 7.57.0 - DoS

CVSS 7.5

CVE-2026-27980 HIGH

Next.js: Unbounded next/image disk cache growth can exhaust storage

CVSS 7.5

CVE-2026-25771 MEDIUM

Wazuh Vulnerable to Denial of Service via Synchronous I/O Blocking in Asynchronous Authentication Middleware

CVSS 5.3

CVE-2026-30405 HIGH

GoBGP gobgpd 4.2.0 - DoS

CVSS 7.5

CVE-2026-4174 LOW

Radare2 5.9.9 - DoS

CVSS 3.3

CVE-2026-30955 MEDIUM

Gokapi <2.2.4 - DoS

CVSS 6.5

CVE-2026-29776 LOW

FreeRDP <3.24.0 - Memory Corruption

CVSS 3.1

CVE-2026-25819 HIGH

HMS Networks Ewon Flexy <15.0s4 - DoS

CVSS 7.5

CVE-2026-23940 MEDIUM

hexpm hexpm/hexpm - DoS

CVSS 6.5