CVE-2022-28203

HIGH Year: 2022
CVSS v3 Score
7.5
High
Weakness Type
CWE-763
View all →

Vulnerability Description

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can result in a very long running query.

Related Vulnerabilities

CVE-2020-36224

HIGH
CVSS:7.5(High)

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service.

CWE-7632020

CVE-2020-5139

HIGH
CVSS:7.5(High)

A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS) due to the release of Invalid pointer and leads to a firewall crash. This vulnerabil...

CWE-7632020

CVE-2020-9098

HIGH
CVSS:7.5(High)

Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the in...

CWE-7632020

CVE-2022-37451

HIGH
CVSS:7.5(High)

Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.

CWE-7632022

CVE-2022-41691

HIGH
CVSS:7.5(High)

When a BIG-IP Advanced WAF/ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate.

CWE-7632022

CVE-2023-4883

HIGH
CVSS:7.5(High)

Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VN...

CWE-7632023