Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-11835 Denial of Service — PlexTrac 7.5 -2024-12-13
CVE-2024-12579 Minify HTML <= 2.1.10 - - Regular Expressions Denial of Service — Minify HTML 5.3 Medium2024-12-13
CVE-2024-54113 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.5 Medium2024-12-12
CVE-2024-49075 Windows Remote Desktop Services Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-12-10
CVE-2024-49129 Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-12-10
CVE-2024-49096 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-12-10
CVE-2024-42426 Dell PowerScale OneFS 资源管理错误漏洞 — PowerScale OneFS 4.3 Medium2024-12-09
CVE-2024-12254 Unbounded memory buffering in SelectorSocketTransport.writelines() — CPython 7.5 -2024-12-06
CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl — libjxl 6.5 -2024-11-25
CVE-2024-52804 Tornado has HTTP cookie parsing DoS vulnerability — tornado 7.5 High2024-11-22
CVE-2024-45420 Zoom Apps - Uncontrolled Resource Consumption — Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers 4.3 Medium2024-11-19
CVE-2023-39180 Kernel: ksmbd: read request memory leak denial-of-service vulnerability 4.0 Medium2024-11-18
CVE-2024-52520 Nextcloud Server's link reference provider can be tricked into downloading bigger files than intended — security-advisories 5.7 Medium2024-11-15
CVE-2023-20125 Cisco BroadWorks Network Server TCP Denial of Service Vulnerability — Cisco BroadWorks 8.6 High2024-11-15
CVE-2024-48989 Bosch Rexroth IndraDrive 安全漏洞 — IndraDrive FWA-INDRV*-MP* 7.5 High2024-11-13
CVE-2024-9409 Schneider Electric多款产品 资源管理错误漏洞 — PowerLogic PM5320 7.5 High2024-11-13
CVE-2024-47535 Denial of Service attack on windows app using Netty — netty 5.5 Medium2024-11-12
CVE-2024-46891 Siemens SINEC INS 资源管理错误漏洞 — SINEC INS 5.3 Medium2024-11-12
CVE-2024-10314 Unauthenticated Denial of Service via Auto Generation Function — Helix Core 7.5AIHighAI2024-11-11
CVE-2024-10344 Unauthenticated Denial of Service via Refuse Function — Helix Core 7.5AIHighAI2024-11-11
CVE-2024-10345 Unauthenticated Denial of Service via Shutdown Function — Helix Core 7.5AIHighAI2024-11-11
CVE-2024-51513 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2024-11-05
CVE-2024-10599 Tongda OA 2017 package_static_resources.php resource consumption — OA 2017 5.3 Medium2024-10-31
CVE-2024-50354 Out-of-memory during deserialization with crafted inputs — gnark 5.5 Medium2024-10-31
CVE-2024-31152 LevelOne WBR-6012 安全漏洞 — WBR-6012 5.3 Medium2024-10-30
CVE-2024-49767 Werkzeug possible resource exhaustion when parsing file data in forms — werkzeug 7.5 -2024-10-25
CVE-2024-20526 Cisco Adaptive Security Appliance 安全漏洞 — Cisco Adaptive Security Appliance (ASA) Software 5.3 Medium2024-10-23
CVE-2024-20351 Cisco Firepower Threat Defense Software Snort Firewall Denial of Service Vulnerability — Cisco Firepower Threat Defense Software 8.6 High2024-10-23
CVE-2024-21536 http-proxy-middleware 安全漏洞 — http-proxy-middleware 7.5 High2024-10-19
CVE-2024-45736 Improperly Formatted ‘INGEST_EVAL’ Parameter Crashes Splunk Daemon — Splunk Enterprise 6.5 Medium2024-10-14

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.