Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-27530 rubygem-rack 安全漏洞 — https://github.com/rack/rack 7.5 -2023-03-10
CVE-2023-27484 Unchecked fieldpath index in Composition's patches can lead to arbitrary memory allocation in crossplane — crossplane 6.2 Medium2023-03-09
CVE-2023-27483 fieldpath's Paved.SetValue allows growing arrays up to arbitrary sizes in crossplane-runtime — crossplane-runtime 5.9 Medium2023-03-09
CVE-2022-41333 Fortinet FortiRecorder 资源管理错误漏洞 — FortiRecorder 6.8 High2023-03-07
CVE-2021-36395 Moodle 安全漏洞 — Moodle 7.5 -2023-03-06
CVE-2022-3277 OpenStack 资源管理错误漏洞 — openstack-neutron 6.5 -2023-03-06
CVE-2023-26470 In XWiki Platform, saving a document with a large object number leads to persistent OOM errors — xwiki-platform 5.7 Medium2023-03-02
CVE-2023-23689 Dell PowerScale OneFS 资源管理错误漏洞 — PowerScale OneFS 5.3 Medium2023-02-28
CVE-2023-26104 lite-web-server 资源管理错误漏洞 — lite-web-server 7.5 High2023-02-25
CVE-2023-25816 nextcloud vulnerable to Uncontrolled Resource Consumption — security-advisories 4.3 Medium2023-02-24
CVE-2023-0662 DoS vulnerability when parsing multipart request body — PHP 7.5 High2023-02-16
CVE-2023-23625 Denial of service in HAMT Decoding in go-unixfs — go-unixfs 5.9 Medium2023-02-09
CVE-2023-23631 HAMT Decoding Panics in github.com/ipfs/go-unixfsnode — go-unixfsnode 5.9 Medium2023-02-09
CVE-2022-40513 Uncontrolled resource consumption in WLAN Firmware. — Snapdragon 7.5 High2023-02-09
CVE-2023-22795 actionpack 安全漏洞 — https://github.com/rails/rails 7.5 -2023-02-09
CVE-2022-44566 rubygem-activerecord 安全漏洞 — https://github.com/rails/rails 7.5 -2023-02-09
CVE-2022-44570 rubygem-rack 资源管理错误漏洞 — https://github.com/rack/rack 7.5 -2023-02-09
CVE-2022-44571 rubygem-rack 安全漏洞 — https://github.com/rack/rack 7.5 -2023-02-09
CVE-2022-44572 rubygem-rack 安全漏洞 — https://github.com/rack/rack 7.5 -2023-02-09
CVE-2023-22792 rubygem-actionpack 安全漏洞 — https://github.com/rails/rails 7.5 -2023-02-09
CVE-2023-22796 rubygem-activesupport 安全漏洞 — https://github.com/rails/rails 7.5 -2023-02-09
CVE-2023-22799 rubygem-globalid 安全漏洞 — https://github.com/rails/globalid 7.5 -2023-02-09
CVE-2023-25151 DoS vulnerability for high cardinality metrics in opentelemetry-go-contrib — opentelemetry-go-contrib 7.5 High2023-02-08
CVE-2023-24574 Dell Enterprise SONiC OS 资源管理错误漏洞 — Enterprise SONiC OS 7.5 High2023-02-02
CVE-2023-23552 BIG-IP Advanced WAF and ASM vulnerability — BIG-IP 7.5 High2023-02-01
CVE-2023-22664 BIG-IP HTTP/2 profile vulnerability — BIG-IP 7.5 High2023-02-01
CVE-2023-23616 Discourse membership requests lack character limit — discourse 3.5 Low2023-01-27
CVE-2023-22486 cmark-gfm Quadratic complexity bug in handle_close_bracket may lead to a denial of service — cmark-gfm 3.5 Low2023-01-24
CVE-2021-28510 For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable. — EOS 5.3 Medium2023-01-24
CVE-2022-27507 Authenticated denial of service — Citrix Application Delivery Controller (Citrix ADC) and Citrix Gateway 6.5 -2023-01-24

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.