Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-1700 Ceph RGW Beast 资源管理错误漏洞 — ceph 6.5 Medium2020-02-07
CVE-2020-8123 strapi 资源管理错误漏洞 — Strapi 3.9 -2020-02-04
CVE-2020-5236 Catastrophic backtracking in regex allows Denial of Service in Waitress — Waitress 5.7 Medium2020-02-04
CVE-2019-5472 GitLab 安全漏洞 — GitLab 7.5 -2020-01-28
CVE-2020-3131 Cisco Webex Teams Adaptive Cards Denial of Service Vulnerability — Cisco Webex Teams 5.7 -2020-01-26
CVE-2019-14888 Red Hat Undertow 资源管理错误漏洞 — undertow 7.5 -2020-01-23
CVE-2020-1600 Junos OS: A specific SNMP command can trigger a high CPU usage Denial of Service in the RPD daemon. — Junos OS 6.5 Medium2020-01-15
CVE-2019-15584 GitLab 资源管理错误漏洞 — GitLab CE/EE 7.5 -2019-12-20
CVE-2019-14901 Linux kernel 缓冲区错误漏洞 — kernel 9.8 -2019-11-29
CVE-2019-16764 PowAssent is susceptible to denial of service attacks — pow_assent 6.5 Medium2019-11-25
CVE-2019-11287 RabbitMQ Web Management Plugin DoS via heap overflow — RabbitMQ for Pivotal Platform 7.5 -2019-11-22
CVE-2019-15593 GitLab 资源管理错误漏洞 — GitLab 6.5 -2019-11-22
CVE-2019-12625 ClamAV Zip Bomb Vulnerability — ClamAV 7.5 High2019-11-05
CVE-2019-5043 Google Nest Cam IQ Indoor 资源管理错误漏洞 — Nest Labs 7.5 -2019-10-31
CVE-2019-7620 Elasticsearch Logstash 输入验证错误漏洞 — Logstash 7.5 -2019-10-30
CVE-2019-15264 Cisco Aironet Access Points and Catalyst 9100 Access Points CAPWAP Denial of Service Vulnerability — Cisco Aironet Access Point Software 6.5 -2019-10-16
CVE-2019-10923 多款Siemens产品资源管理错误漏洞 — Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller 7.5 High2019-10-10
CVE-2019-10936 多款Siemens产品资源管理错误漏洞 — Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller 7.5 High2019-10-10
CVE-2019-0059 Junos OS: The routing protocol process (rpd) may crash and generate core files upon receipt of specific valid BGP states from a peered host. — Junos OS 7.5 High2019-10-09
CVE-2019-12714 Cisco IC3000 Industrial Compute Gateway Denial of Service Vulnerability — Cisco IC3000 Industrial Compute Gateway 6.5 -2019-10-02
CVE-2019-12700 Cisco FTD, FMC, and FXOS Software Pluggable Authentication Module Denial of Service Vulnerability — Cisco Firepower Management Center 6.5 -2019-10-02
CVE-2019-12698 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software WebVPN CPU Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 7.5 -2019-10-02
CVE-2019-12658 Cisco IOS XE Software Filesystem Exhaustion Denial of Service Vulnerability — Cisco IOS XE Software 16.1.1 7.5 -2019-09-25
CVE-2019-11060 HG100 contains an Uncontrolled Resource Consumption vulnerability — HG100 firmware 7.5 -2019-08-29
CVE-2019-1965 Cisco NX-OS Software Remote Management Memory Leak Denial of Service Vulnerability — Cisco NX-OS Software 6.5 -2019-08-28
CVE-2019-9511 Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service — n/a 7.5 -2019-08-13
CVE-2019-9512 Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service — n/a 7.5 -2019-08-13
CVE-2019-9513 Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service — n/a 7.5 -2019-08-13
CVE-2019-9515 Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service — n/a 7.5 -2019-08-13
CVE-2019-9516 Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service — n/a 7.5 -2019-08-13

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.