Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-22332 IBM Integration Bus for z/OS denial of service — Integration Bus for z/OS 6.5 Medium2024-02-09
CVE-2024-24575 libgit2 is vulnerable to a denial of service attack in `git_revparse_single` — libgit2 7.5 High2024-02-06
CVE-2024-24943 JetBrains Toolbox 安全漏洞 — Toolbox App 5.3 Medium2024-02-06
CVE-2024-24762 python-multipart vulnerable to content-type header Regular expression Denial of Service — python-multipart 7.5 High2024-02-05
CVE-2023-31006 IBM Security Access Manager Container denial of service — Security Verify Access Appliance 6.5 Medium2024-02-03
CVE-2023-30999 IBM Security Access Manager denial of service — Security Verify Access Appliance 7.5 High2024-02-03
CVE-2023-45028 QTS, QuTS hero, QuTScloud — QTS 5.5 Medium2024-02-02
CVE-2024-23824 mailcow ipixel flood attack leads to Denial of Service in admin page — mailcow-dockerized 4.7 Medium2024-02-02
CVE-2024-24752 Bref Uploaded Files Not Deleted in Event-Driven Functions — bref 6.5 Medium2024-02-01
CVE-2024-1014 Uncontrolled resource consumption vulnerability in SE-elektronic GmbH E-DDC3.3 — E-DDC3.3 6.2 Medium2024-01-29
CVE-2023-6450 Lenovo App Store 资源管理错误漏洞 — Lenovo App Store Application 5.5 Medium2024-01-19
CVE-2024-0581 Uncontrolled Resource Consumption vulnerability on Sandsprite scdbg — Scdbg 4.0 Medium2024-01-16
CVE-2023-52098 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2024-01-16
CVE-2024-21655 Insufficient control of custom field value sizes — discourse 4.3 Medium2024-01-12
CVE-2023-48297 Discourse vulnerable to unlimited mentioned users in message serializer — discourse 8.6 High2024-01-12
CVE-2023-49295 quic-go's path validation mechanism can cause denial of service — quic-go 6.4 Medium2024-01-10
CVE-2024-0348 SourceCodester Engineers Online Portal File Upload resource consumption — Engineers Online Portal 4.3 Medium2024-01-09
CVE-2024-20672 .NET Denial of Service Vulnerability — .NET 6.0 7.5 High2024-01-09
CVE-2024-22164 Denial of Service of an Investigation in Splunk Enterprise Security through Investigation attachments — Splunk Enterprise Security (ES) 4.3 Medium2024-01-09
CVE-2024-21651 XWiki Denial of Service attack through attachments — xwiki-platform 7.5 High2024-01-08
CVE-2024-0241 encoded_id-rails Denial of Service Vulnerability 7.5AIHighAI2024-01-04
CVE-2023-26157 libredwg 安全漏洞 — libredwg 5.5 Medium2024-01-02
CVE-2023-50730 Grackle has StackOverflowError in GraphQL query processing — grackle 7.5 High2023-12-22
CVE-2023-46131 Grails® data binding causes JVM crash and/or DoS — grails-core 6.5 Medium2023-12-20
CVE-2023-50249 Sentry's Astro SDK vulnerable to ReDoS — sentry-javascript 7.5 High2023-12-20
CVE-2023-50707 Uncontrolled Resource Consumption in EFACEC BCU 500 — BCU 500 9.6 Critical2023-12-19
CVE-2023-46104 Apache Superset: Allows for uncontrolled resource consumption via a ZIP bomb — Apache Superset 6.5 Medium2023-12-19
CVE-2023-6193 Unbounded queuing of path validation messages in cloudflare-quiche — quiche 5.3 Medium2023-12-12
CVE-2023-49809 Todo plugin gets crashed and disabled by member — Mattermost 4.3 Medium2023-12-12
CVE-2023-45847 Playbook Plugin Crash via Run Checklist — Mattermost 4.3 Medium2023-12-12

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.