Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-28356 Rocket.Chat 资源管理错误漏洞 — Rocket.Chat 7.5 -2023-05-11
CVE-2022-36329 Denial of Service over OTA mechanism in Western Digital My Cloud Home and ibi devices — My Cloud Home and My Cloud Home Duo 4.4 Medium2023-05-10
CVE-2023-25568 Boxo bitswap/server: DOS unbounded persistent memory leak — boxo 8.2 High2023-05-10
CVE-2023-24594 BIG-IP TMM SSL vulnerability — BIG-IP 5.3 Medium2023-05-03
CVE-2023-30798 MultipartParser DOS with too many fields or files in Starlette Framework — Starlette 7.5 High2023-04-21
CVE-2023-0384 Uncontrolled Resource Consuption in M-Files Server — M-Files Server 6.5 Medium2023-04-20
CVE-2023-28440 Denial of service via admin theme import route in Discourse — discourse 2.7 Low2023-04-18
CVE-2023-26048 OutOfMemoryError for large multipart without filename in Eclipse Jetty — jetty.project 5.3 Medium2023-04-18
CVE-2023-30769 Rab13s Exploit — Node 9.1 Critical2023-04-17
CVE-2023-29013 HTTP header parsing could cause a deny of service — traefik 7.5 High2023-04-14
CVE-2023-20863 Spring Framework 安全漏洞 — Spring Framework 6.5 -2023-04-13
CVE-2023-24545 On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch. — EOS 7.5 High2023-04-12
CVE-2023-28217 Windows Network Address Translation (NAT) Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-04-11
CVE-2023-29185 Denial of Service (DOS) in SAP NetWeaver AS for ABAP (Business Server Pages) — NetWeaver AS for ABAP (Business Server Pages) 5.3 Medium2023-04-11
CVE-2023-28763 Denial of Service in SAP NetWeaver AS for ABAP and ABAP Platform — NetWeaver AS for ABAP and ABAP Platform 6.5 Medium2023-04-11
CVE-2023-20051 Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability — Cisco ASR 5000 Series Software 5.8 Medium2023-04-05
CVE-2023-28837 Wagtail vulnerable to denial-of-service via memory exhaustion when uploading large files — wagtail 4.9 Medium2023-04-03
CVE-2023-24824 Quadratic complexity may lead to a denial of service in cmark-gfm — cmark-gfm 5.3 Medium2023-03-31
CVE-2023-26485 Quadratic complexity may lead to a denial of service in cmark-gfm — cmark-gfm 5.3 Medium2023-03-31
CVE-2022-4899 Zstandard 资源管理错误漏洞 — zstd 6.2 -2023-03-31
CVE-2023-28846 Denial of Service in unpoly-rails — unpoly-rails 5.9 Medium2023-03-30
CVE-2023-28644 Reference fetch can saturate the server bandwidth for 10 seconds in nextcloud server — security-advisories 5.7 Medium2023-03-30
CVE-2023-28507 Memory exhaustion in LZ4 decompression in UniRPC daemon — UniData 9.1 -2023-03-29
CVE-2023-28626 Quadratic runtime when parsing Markdown in comrak — comrak 5.3 Medium2023-03-28
CVE-2023-1654 Denial of Service in gpac/gpac — gpac/gpac 5.5 -2023-03-27
CVE-2023-0056 Haproxy 资源管理错误漏洞 — haproxy 6.5 -2023-03-23
CVE-2023-1605 Denial of Service in radareorg/radare2 — radareorg/radare2 6.2 -2023-03-23
CVE-2023-23396 Microsoft Excel Denial of Service Vulnerability — Microsoft Office Online Server 6.5 Medium2023-03-14
CVE-2023-27270 Denial of Service (DoS) in SAP NetWeaver AS for ABAP and ABAP Platform — NetWeaver Application Server for ABAP and ABAP Platform 6.5 Medium2023-03-14
CVE-2023-25618 Denial of Service (DoS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform — NetWeaver AS for ABAP and ABAP Platform 6.5 Medium2023-03-14

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.