Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-35241 NGINX Instance Manager vulnerability CVE-2022-35241 — NGINX Instance Manager 6.5 Medium2022-08-04
CVE-2022-35236 HTTP2 profile vulnerability CVE-2022-35236 — BIG-IP 7.5 High2022-08-04
CVE-2022-33203 BIG-IP APM and F5 SSL Orchestrator vulnerability CVE-2022-33203 — BIG-IP APM 7.5 High2022-08-04
CVE-2022-35923 Inefficient Regular Expression Complexity in v8n — v8n 7.5 High2022-08-02
CVE-2022-35922 Memory allocation based on untrusted length in rust-websocket — rust-websocket 7.5 High2022-08-01
CVE-2022-35915 Unbounded gas consumption in @openzeppelin/contracts — openzeppelin-contracts 5.3 Medium2022-08-01
CVE-2022-31173 Juniper is vulnerable to @DOS GraphQL Nested Fragments overflow — juniper 7.5 High2022-08-01
CVE-2022-24294 ReDoS in Apache MXNet RTC Module — Apache MXNet 7.5 -2022-07-24
CVE-2022-2406 Malicious imports can lead to Denial of Service — Mattermost 4.3 Medium2022-07-14
CVE-2022-31080 KubeEdge Websocket Client in package Viaduct: DoS from large response message — kubeedge 4.4 Medium2022-07-11
CVE-2022-31079 KubeEdge Cloud Stream and Edge Stream DoS from large stream message — kubeedge 4.4 Medium2022-07-11
CVE-2022-31078 KubeEdge CloudCore Router memory exhaustion — kubeedge 4.4 Medium2022-07-11
CVE-2022-31075 KubeEdge DoS when signing the CSR from EdgeCore — kubeedge 4.9 Medium2022-07-11
CVE-2022-31074 KubeEdge Cloud AdmissionController component DoS — kubeedge 4.5 Medium2022-07-11
CVE-2022-31073 KubeEdge Edge ServiceBus module DoS — kubeedge 6.5 Medium2022-07-11
CVE-2022-30792 CODESYS: CmpChannelServer, CmpChannelServerEmbedded allow unauthenticated attackers to block all their available communication channels — CODESYS Control RTE (SL) 7.5 High2022-07-11
CVE-2022-30791 CODESYS V3: CmpBlkDrvTcp allows unauthenticated attackers to block all its available TCP connections — CODESYS Control RTE (SL) 7.5 High2022-07-11
CVE-2022-20808 Cisco Smart Software Manager On-Prem Denial of Service Vulnerability — Cisco Smart Software Manager On-Prem 7.7 High2022-07-06
CVE-2022-31129 Inefficient Regular Expression Complexity in moment — moment 7.5 High2022-07-06
CVE-2014-3648 simplepush 资源管理错误漏洞 — Jboss Aerogear 7.5 -2022-07-01
CVE-2022-31110 Denial of Service (DoS) vulnerability in RSSHub — RSSHub 5.3 Medium2022-06-29
CVE-2022-26477 Denial of service in readExternal method — Apache SystemDS 7.5 -2022-06-27
CVE-2022-31016 Argo CD vulnerable to Uncontrolled Memory Consumption — argo-cd 6.5 Medium2022-06-25
CVE-2022-31803 CODESYS Gateway Server V2 prone to Denial of Service Attack — CODESYS Gateway Server V2 5.3 Medium2022-06-24
CVE-2022-27889 The Foundry Multipass service contains code paths that could be abused to cause a denial of service for authentication and authorization operations. — Foundry Multipass 5.3 Medium2022-06-14
CVE-2022-31054 Uses of deprecated API can be used to cause DoS in user-facing endpoints in Argo Events — argo-events 7.5 High2022-06-13
CVE-2022-29225 Zip bomb vulnerability in Envoy — envoy 7.5 High2022-06-09
CVE-2022-1708 CRI-O 资源管理错误漏洞 — CRI-O 6.5 -2022-06-07
CVE-2022-31030 containerd CRI plugin: Host memory exhaustion through ExecSync — containerd 5.5 Medium2022-06-06
CVE-2022-31028 Possible DDOS by establishing keep-alive connections with anonymous HTTP clients in MinIO — minio 7.5 High2022-06-03

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.