Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-400 (未加控制的资源消耗(资源穷尽)) — Vulnerability Class 1385

1385 vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-4533 JeecgBoot Document Library Upload zip unzipFile resource consumption — JeecgBoot 2.7 Low2025-05-11
CVE-2025-46392 Apache Commons Configuration: Uncontrolled Resource Consumption when loading untrusted configurations in 1.x — Apache Commons Configuration 7.5AIHighAI2025-05-09
CVE-2025-1948 Eclipse Jetty HTTP clients can increase memory allocation — Jetty 7.5 High2025-05-08
CVE-2025-46727 Unbounded-Parameter DoS in Rack::QueryParser — rack 7.5 High2025-05-07
CVE-2025-20162 Cisco IOS XE 资源管理错误漏洞 — Cisco IOS XE Software 8.6 High2025-05-07
CVE-2025-46593 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.1 Medium2025-05-06
CVE-2025-46728 cpp-httplib has Unbounded Memory Allocation in Chunked/No-Length Requests — cpp-httplib 7.5 High2025-05-06
CVE-2025-23246 NVIDIA vGPU 资源管理错误漏洞 — vGPU Software, Cloud Gaming 5.5 Medium2025-05-01
CVE-2024-52979 Elasticsearch Uncontrolled Resource Consumption vulnerability — Elasticsearch 6.5 Medium2025-05-01
CVE-2025-43857 net-imap rubygem vulnerable to possible DoS by memory exhaustion — net-imap 7.5AIHighAI2025-04-28
CVE-2025-32472 DoS attack by conducting a slowloris-type attack — SICK multiScan1XX 5.3 Medium2025-04-28
CVE-2025-46580 ZTE GoldenDB Database product has a code-related vulnerability — GoldenDB 7.7 High2025-04-27
CVE-2025-31118 NamelessMC Has Forum Reply Submission Time Limit Bypass — Nameless 7.1 High2025-04-18
CVE-2025-30158 NamelessMC Forum iframe width/height abuse causing UI-based Denial of Service — Nameless 7.1 High2025-04-18
CVE-2025-27081 HPE NonStop OSM Service Connection Suite, Denial of Service vulnerability — HPE NonStop OSM Service Connection Suite 6.8 Medium2025-04-10
CVE-2025-27486 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2025-27485 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2025-27469 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability — Windows 10 Version 1507 7.5 High2025-04-08
CVE-2025-26673 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability — Windows 10 Version 1507 7.5 High2025-04-08
CVE-2025-26652 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2025-26641 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1507 7.5 High2025-04-08
CVE-2025-21174 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2025-27473 HTTP.sys Denial of Service Vulnerability — Windows 10 Version 1507 7.5 High2025-04-08
CVE-2025-27470 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2025-26680 Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2012 R2 7.5 High2025-04-08
CVE-2024-52981 Elastic Elasticsearch 资源管理错误漏洞 — Elasticsearch 4.9 Medium2025-04-08
CVE-2024-52974 Elastic Kibana 资源管理错误漏洞 — Kibana 6.5 Medium2025-04-08
CVE-2024-52980 Elasticsearch Uncontrolled Resource Consumption vulnerability — Elasticsearch 6.5 Medium2025-04-08
CVE-2025-3016 Open Asset Import Library Assimp MDL File MDLMaterialLoader.cpp ParseTextureColorData resource consumption — Assimp 4.3 Medium2025-03-31
CVE-2025-2586 Ols: unauthenticated metrics flooding in openshift lightspeed service leading to resource exhaustion 7.5 High2025-03-31

Vulnerabilities classified as CWE-400 (未加控制的资源消耗(资源穷尽)) represent 1385 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.