Falhas do tipo CWE-407
90 resultadosCVE-2026-41850HIGHSpring Framework Algorithmic Denial of Service via SpEL ExpressionsEPSS 0.4%CVE-2026-31937HIGHSuricata dcerpc: quadratic complexity in dcerpc bufferingEPSS 0.4%CVE-2026-31933HIGHSuricata stream: quadratic complexity in stream inspectionEPSS 0.4%CVE-2026-33123MEDIUMpypdf has inefficient decoding of array-based streamsEPSS 0.3%CVE-2026-35599MEDIUMVikunja has an Algorithmic Complexity DoS in Repeating Task HandlerEPSS 0.3%CVE-2025-30348MEDIUMencodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with reEPSS 0.3%CVE-2026-49293HIGHCPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literalsEPSS 0.3%CVE-2026-42923MEDIUMDegradation of service with unbounded NSEC3 hash calculationsEPSS 0.3%CVE-2026-44378MEDIUMBotan: Quadratic complexity decoding BER indefinite length encodingsEPSS 0.3%CVE-2025-14822LOWDoS from quadratic complexity in model.ParseHashtagsEPSS 0.3%CVE-2024-29916MEDIUMThe dormakaba Saflok system before the November 2023 software update allows an attacker to unlock arbitrary doors at a property via forged kEPSS 0.3%CVE-2026-45186LOWIn libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crEPSS 0.3%CVE-2026-45664MEDIUMImageMagick: Policy Bypass in MNG coder couldEPSS 0.3%CVE-2025-67841HIGHNordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue.EPSS 0.3%CVE-2026-31934HIGHSuricata smtp/mine: quadratic complexity in extracting urlsEPSS 0.3%CVE-2026-31932HIGHSuricata krb5: quadratic complexity in krb5 bufferingEPSS 0.3%CVE-2026-53539HIGHPython-Multipart: Quadratic-time querystring parsing with semicolon separators causes CPU denial of serviceEPSS 0.3%CVE-2026-48502HIGHMessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflowsEPSS 0.3%CVE-2026-49851HIGHMistune: Potential DoS via quadratic-time parsing in parse_link_textEPSS 0.3%CVE-2026-53550MEDIUMjs-yaml: Quadratic-complexity DoS in merge key handling via repeated aliasesEPSS 0.3%