VDB

GCVE-110-NCSC-2026-22

GCVE-110-NCSC-2026-22
Advisory PublishedCVSS 5.3/10
Vulnetix · Advisory published January 21, 2026
Multiple vulnerabilities across Oracle Communications products and GNU libtasn1 versions could allow unauthenticated attackers to execute partial denial of service attacks, with CVSS scores of 5.3 for affected versions.

Weaknesses (CWE)

CWE-407Inefficient Algorithmic ComplexityCWE-116Improper Encoding or Escaping of OutputCWE-400Uncontrolled Resource ConsumptionCWE-125Out-of-bounds ReadCWE-393Return of Wrong Status CodeCWE-835Loop with Unreachable Exit Condition ('Infinite Loop')CWE-770Allocation of Resources Without Limits or ThrottlingCWE-123Write-what-where ConditionCWE-209Generation of Error Message Containing Sensitive InformationCWE-789Memory Allocation with Excessive Size ValueCWE-415Double FreeCWE-122Heap-based Buffer OverflowCWE-285Improper AuthorizationCWE-121Stack-based Buffer OverflowCWE-284Improper Access ControlCWE-674Uncontrolled RecursionCWE-416Use After FreeCWE-252Unchecked Return ValueCWE-409Improper Handling of Highly Compressed Data (Data Amplification)CWE-201Insertion of Sensitive Information Into Sent DataCWE-404Improper Resource Shutdown or ReleaseCWE-1321Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')CWE-611Improper Restriction of XML External Entity ReferenceCWE-297Improper Validation of Certificate with Host Mismatch

Risk Scores

CVSS 3.1
5.3/10
Medium · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products

VendorProductVersionsPlatforms
Oraclevers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›