Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-24839 Uncontrolled Resource Consumption in org.cyberneko.html (nokogiri fork) — nekohtml 7.5 High2022-04-11
CVE-2022-24836 Inefficient Regular Expression Complexity in Nokogiri — nokogiri 7.5 High2022-04-11
CVE-2022-1210 LibTIFF tiff2ps resource consumption — LibTIFF 4.3 Medium2022-04-03
CVE-2021-22100 cloud foundry 资源管理错误漏洞 — Cloud Controller (CAPI) by cloud foundry 5.3 -2022-03-25
CVE-2022-24729 Regular expression Denial of Service in dialog plugin — ckeditor4 6.5 Medium2022-03-16
CVE-2022-22145 Yokogawa Exaopc 资源管理错误漏洞 — CENTUM CS 3000 6.5 -2022-03-11
CVE-2022-24726 Unauthenticated control plane denial of service attack in Istio — istio 7.5 High2022-03-10
CVE-2022-24741 High memory usage in Nextcloud server — security-advisories 3.5 Low2022-03-09
CVE-2022-24713 Regular expression denial of service in Rust's regex crate — regex 7.5 High2022-03-08
CVE-2021-3733 Python 资源管理错误漏洞 — python 6.5 -2022-03-07
CVE-2022-25326 Denial of Service in fscrypt — fscrypt 5.5 Medium2022-02-25
CVE-2021-4021 radare2 资源管理错误漏洞 — radare2 6.2 -2022-02-24
CVE-2022-0695 Denial of Service in radareorg/radare2 — radareorg/radare2 6.2 -2022-02-24
CVE-2022-20624 Cisco NX-OS Software Cisco Fabric Services Over IP Denial of Service Vulnerability — Cisco NX-OS Software 8.6 High2022-02-23
CVE-2022-0476 Denial of Service in radareorg/radare2 — radareorg/radare2 6.2 -2022-02-23
CVE-2021-4115 polkit 安全漏洞 — polkitd 5.5 -2022-02-21
CVE-2022-21698 Uncontrolled Resource Consumption in promhttp — client_golang 7.5 High2022-02-15
CVE-2022-22543 SAP NetWeaver Application Server 资源管理错误漏洞 — SAP NetWeaver Application Server for ABAP (Kernel) and ABAP Platform (Kernel) 7.5 -2022-02-09
CVE-2022-23580 Abort caused by allocating a vector that is too large in Tensorflow — tensorflow 6.5 Medium2022-02-04
CVE-2022-23591 Stack overflow in Tensorflow — tensorflow 7.5 High2022-02-04
CVE-2022-22724 Schneider Electric Modicon M340 资源管理错误漏洞 — Modicon M340 CPUs: BMXP34 (All Versions) 7.5 -2022-02-04
CVE-2021-43859 Denial of Service by injecting highly recursive collections or maps in XStream — xstream 7.5 High2022-02-01
CVE-2021-40406 Reolink Rlc-410W 资源管理错误漏洞 — n/a 7.5 -2022-01-28
CVE-2022-23030 F5 BIG-IP 资源管理错误漏洞 — BIG-IP 5.3 -2022-01-25
CVE-2022-23023 F5 BIG-IP 资源管理错误漏洞 — BIG-IP & BIG-IQ 6.5 -2022-01-25
CVE-2022-23024 F5 BIG-IP AFM 资源管理错误漏洞 — BIG-IP AFM 7.5 -2022-01-25
CVE-2022-23015 F5 BIG-IP 资源管理错误漏洞 — BIG-IP 7.5 -2022-01-25
CVE-2022-21708 Denial of Service in graphql-go — graphql-go 6.5 Medium2022-01-21
CVE-2021-23236 Fresenius Kabi Agilia Connect Infusion System uncontrolled resource consumption — Agilia Link+ 7.5 High2022-01-21
CVE-2022-22161 Junos OS: MX104 might become unresponsive if the out-of-band management port receives a flood of traffic — Junos OS 7.5 High2022-01-19

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.