ZCyberNews
中文

#denial-of-service

9 articles

This archive collects 9 articles tagged denial-of-service published between May 5, 2026 and May 17, 2026, giving security teams a focused view of how this topic has appeared across ZCyberNews coverage. Recent coverage references CVE-2026-34176, CVE-2026-39459, and CVE-2026-41225, with each report tied to the specific vulnerability context available in the source article. The affected-scope signals emphasize telecommunications, technology, and enterprise networking across Global, helping readers compare exposure patterns without adding claims beyond the archive data. Severity coverage includes 2 critical, 5 high, and 2 medium reports.

Open5GS NRF DoS CVE-2026-8731 Lets Remote Attackers Crash SBI ClientMEDIUM
Vulnerabilities

Open5GS NRF DoS CVE-2026-8731 Lets Remote Attackers Crash SBI Client

CVE-2026-8731 (CVSS 4.3) in Open5GS up to 2.7.7 lets remote attackers trigger a denial-of-service via the NRF component's SBI client_pool argument. Exploit code is public.

CVE-2026-8731
3 min read
protobufjs Flaw CVE-2026-45740 Enables DoS via Deeply Nested JSONHIGH
Vulnerabilities

protobufjs Flaw CVE-2026-45740 Enables DoS via Deeply Nested JSON

CVE-2026-45740 (CVSS 7.5) in protobufjs lets attackers crash Node.js apps by sending crafted JSON descriptors with deeply nested namespaces — affects versions before 7.5.8 and...

CVE-2026-45740
3 min read
F5 Patches 51 Flaws: NGINX DoS, BIG-IP RCE Among Critical FixesCRITICAL
Vulnerabilities

F5 Patches 51 Flaws: NGINX DoS, BIG-IP RCE Among Critical Fixes

F5 fixed 19 high-severity and 32 medium-severity bugs across BIG-IP, BIG-IQ, and NGINX. The most severe, CVE-2026-42945 (CVSS 9.2), enables heap overflow DoS in NGINX rewrite...

CVE-2026-42945CVE-2026-41225CVE-2026-41957+2
4 min read
CVE-2026-40612: jq Stack Overflow Lets Attackers Crash JSON ProcessorHIGH
Vulnerabilities

CVE-2026-40612: jq Stack Overflow Lets Attackers Crash JSON Processor

CVE-2026-40612 in jq 1.8.1 and earlier allows attackers to trigger a stack overflow via deeply nested JSON input, crashing the tool. CVSS 7.5.

CVE-2026-40612
3 min read
Docling JATS XML Backend XXE Flaw CVE-2026-31247 Enables DoSHIGH
Vulnerabilities

Docling JATS XML Backend XXE Flaw CVE-2026-31247 Enables DoS

CVE-2026-31247: Docling's JATS XML backend through 2.61.0 uses etree.parse() without disabling entity expansion, allowing XML bomb attacks that consume excessive resources and...

CVE-2026-31247
3 min read
Open5GS SMF DoS Flaws CVE-2026-8251, CVE-2026-8249 Exploited PubliclyMEDIUM
Vulnerabilities

Open5GS SMF DoS Flaws CVE-2026-8251, CVE-2026-8249 Exploited Publicly

Two CVSS 4.3 denial-of-service vulnerabilities in Open5GS up to 2.7.7 allow remote attackers to crash the SMF via crafted PCC rule updates. Public exploits exist.

CVE-2026-8251CVE-2026-8249
4 min read
MikroTik RouterOS SMB DoS Flaw CVE-2024-27686 Lets Remote AttackersHIGH
Vulnerabilities

MikroTik RouterOS SMB DoS Flaw CVE-2024-27686 Lets Remote Attackers

CVE-2024-27686 (CVSS 7.5) affects MikroTik RouterOS x86 versions 6.40.5 through 6.49.10 — a crafted SMB packet on TCP 445 triggers a device crash. No authentication required.

CVE-2024-27686
3 min read
Cisco DoS Flaw CVE-2026-20188 Requires Manual Reboot to RecoverHIGH
Vulnerabilities

Cisco DoS Flaw CVE-2026-20188 Requires Manual Reboot to Recover

CVE-2026-20188: Unauthenticated attackers can crash Cisco Crosswork Network Controller and NSO via low-complexity exploit. No patch for older releases; manual reboot required.

CVE-2026-20188CVE-2025-20362CVE-2025-20333+3
3 min read
Apache Patches Critical HTTP/2 Double-Free Flaw CVE-2026-23918CRITICAL
Vulnerabilities

Apache Patches Critical HTTP/2 Double-Free Flaw CVE-2026-23918

Apache HTTP Server CVE-2026-23918 (CVSS 8.8) enables DoS and potential RCE via double-free in HTTP/2 handling. Affects all mod_http2 users. Patch now.

CVE-2026-23918
3 min read

Stay Updated

Get the latest cybersecurity news delivered to your inbox.