Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-22239 Email Sending Vulnerability in BLUVOYIX — BLUVOYIX 7.2AIHighAI2026-01-14
CVE-2025-40944 Siemens多款产品 资源管理错误漏洞 — SIMATIC ET 200AL IM 157-1 PN 7.5 High2026-01-13
CVE-2026-22690 pypdf has possible long runtimes for missing /Root object with large /Size values — pypdf--2026-01-10
CVE-2026-22542 DENIAL OF SERVICE FOR CONCURRENT CONNECTIONS ON TELNET — QC 60/90/120 6.5 -2026-01-07
CVE-2026-22541 DENIAL OF SERVICE VIA ICMP PACKETS — QC 60/90/120 9.1 -2026-01-07
CVE-2026-22540 DENIAL OF SERVICE VIA ARP PACKETS — QC60/90/120 8.1 -2026-01-07
CVE-2026-21452 MessagePack-Java Vulnerable to Remote Denial of Service via Malicious .msgpack Model File Triggering Unbounded EXT Payload Allocation — msgpack-java 7.5 High2026-01-02
CVE-2025-68272 Signal K Server Vulnerable to Denial of Service via Unrestricted Access Request Flooding — signalk-server 7.5 High2026-01-01
CVE-2025-59529 simple protocol server ignores accepts unlimited connections and logs failures without limit — avahi 5.5 Medium2025-12-18
CVE-2025-8872 A specially crafted packet can cause the OSFPv3 process to have high CPU utilization which may result in the OSFPv3 process being restarted — EOS 6.5 Medium2025-12-16
CVE-2023-53873 SyncBreeze 15.2.24 Denial of Service via Login Endpoint Overflow — SyncBreeze 7.5AIHighAI2025-12-15
CVE-2025-67731 Servify Express does not enforce rate limiting when parsing JSON — servify-express 7.5AIHighAI2025-12-12
CVE-2025-67725 Tornado is Vulnerable to Quadratic DoS via Repeated Header Coalescing — tornado 7.5 High2025-12-12
CVE-2024-58306 minaliC 2.0.0 Denial of Service Vulnerability via Large GET Request — minaliC 7.5AIHighAI2025-12-11
CVE-2025-66453 Rhino vulnerable high CPU usage and potential DoS when passing specific numbers to toFixed() function — rhino 7.5AIHighAI2025-12-03
CVE-2025-66303 Grav is vulnerable to a DOS on the admin panel — grav 4.9 Medium2025-12-01
CVE-2025-58436 OpenPrinting CUPS slow client can halt cupsd, leading to a possible DoS attack — cups 5.1 Medium2025-11-29
CVE-2020-36872 BACnet Test Server 1.01 Malformed BVLC Length DoS — BACnet Test Server 7.5AIHighAI2025-11-26
CVE-2025-66019 pypdf manipulated LZWDecode streams can exhaust RAM — pypdf 4.3AIMediumAI2025-11-25
CVE-2025-13466 body-parser vulnerable to denial of service when url encoding is used — body-parser 5.3AIMediumAI2025-11-24
CVE-2025-65947 thread-amount is Vulnerable to Resource Exhaustion (Memory and Handle Leaks) on Windows and macOS — thread-amount 6.5 -2025-11-21
CVE-2025-6599 Zyxel DX3301-T0 资源管理错误漏洞 — DX3301-T0 firmware 5.3 Medium2025-11-18
CVE-2025-11681 Denial of Service condition in M-Files Server — M-Files Server 6.5AIMediumAI2025-11-17
CVE-2021-4467 Positive Technologies MaxPatrol 8 & XSpider Remote DoS — MaxPatrol 8 (Server) 7.5 -2025-11-14
CVE-2021-4465 ReQuest Serious Play F3 Media Server <= 7.0.3 Remote DoS — ReQuest Serious Play Pro 7.5 -2025-11-14
CVE-2023-7326 Epson Stylus SX510W Printer Remote Power Off DoS — Epson Stylus SX510W 7.5 -2025-11-12
CVE-2025-64388 Denial of service through specific packets — TCPRS1plus 7.5 -2025-10-31
CVE-2025-30188 Open-Xchange OX App Suite 安全漏洞 — OX App Suite 7.5 High2025-10-31
CVE-2025-6176 Brotli decompression bomb DoS in scrapy/scrapy — scrapy/scrapy 7.5 -2025-10-31
CVE-2025-8849 Denial of Service in danny-avila/librechat — danny-avila/librechat 7.5 -2025-10-30

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.