Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-8184 Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks — Jetty 5.9 Medium2024-10-14
CVE-2024-6762 Jetty PushSessionCacheFilter can cause remote DoS attacks — Jetty 3.1 Low2024-10-14
CVE-2024-9823 Jetty DOS vulnerability on DosFilter — Jetty 5.3 Medium2024-10-14
CVE-2024-47497 Junos OS: SRX Series, QFX Series, MX Series and EX Series: Receiving specific HTTPS traffic causes resource exhaustion — Junos OS 7.5 High2024-10-11
CVE-2024-7294 Uncontrolled resource consumption of anonymous endpoints — Telerik Report Server 7.5 High2024-10-09
CVE-2024-43575 Windows Hyper-V Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-10-08
CVE-2024-43545 Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-10-08
CVE-2024-43544 Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-10-08
CVE-2024-38149 BranchCache Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-10-08
CVE-2024-43541 Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-10-08
CVE-2024-43515 Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-10-08
CVE-2024-43506 BranchCache Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-10-08
CVE-2024-8626 Logix Controllers Vulnerable to Denial-of-Service Vulnerability — CompactLogix 5380 controllers 7.5AIHighAI2024-10-08
CVE-2024-43789 Denial of service by the absence of restrictions on replies to posts in Discourse — discourse 7.5 High2024-10-07
CVE-2024-47554 Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader — Apache Commons IO 7.5 -2024-10-03
CVE-2024-20502 Cisco AnyConnect VPN 安全漏洞 — Cisco Meraki MX Firmware 5.8 Medium2024-10-02
CVE-2024-20500 Cisco AnyConnect VPN 安全漏洞 — Cisco Meraki MX Firmware 5.8 Medium2024-10-02
CVE-2024-9358 ThingsBoard HTTP RPC API resource consumption — ThingsBoard 5.3 Medium2024-10-01
CVE-2024-8451 PLANET Technology switch devices - SSH server DoS attack — GS-4210-24PL4C hardware 2.0 7.5 High2024-09-30
CVE-2024-37125 Dell SmartFabric OS10 资源管理错误漏洞 — SmartFabric OS10 Software 7.5 High2024-09-26
CVE-2024-47003 DoS via non-string message using permalink embed — Mattermost 3.1 Low2024-09-26
CVE-2024-7254 Stack overflow in Protocol Buffers Java Lite — Protocol Buffers 9.1AICriticalAI2024-09-19
CVE-2024-8892 Uncontrolled Resource Consumption vulnerability on CIRCUTOR TCP2RS+ — CIRCUTOR TCP2RS+ 5.3 Medium2024-09-18
CVE-2024-8939 Vllm: denials of service in vllm json web api 6.2 Medium2024-09-17
CVE-2024-38236 DHCP Server Service Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-09-10
CVE-2024-43647 Siemens SIMATIC 安全漏洞 — SIMATIC S7-200 SMART CPU CR40 7.5 High2024-09-10
CVE-2024-8418 Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service 7.5 High2024-09-04
CVE-2024-21658 Insufficient control of region value length in discourse-calendar — discourse-calendar 4.3 Medium2024-08-30
CVE-2024-43806 `rustix::fs::Dir` iterator with the `linux_raw` backend can cause memory explosion — rustix 6.5 Medium2024-08-26
CVE-2024-43105 Excessive Resource Consumption via `/export` — Mattermost 4.3 Medium2024-08-23

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.