Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 795

795 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-53538 Suricata's mishandling of data on HTTP2 stream 0 can lead to resource starvation — suricata 7.5 High2025-07-22
CVE-2024-38335 IBM Security QRadar Network Threat Analytics denial of service — Security QRadar Network Threat Analytics 4.5 Medium2025-07-22
CVE-2025-54121 Starlette has possible denial-of-service vector when parsing large files in multipart forms — starlette 5.3 Medium2025-07-21
CVE-2025-29606 py-libp2p 安全漏洞 — py-libp2p 4.3 Medium2025-07-14
CVE-2025-53629 cpp-httplib Unbounded Memory Allocation in Chunked/No-Length Requests Vulnerability — cpp-httplib 7.5 High2025-07-10
CVE-2025-53634 Chall-Manager's HTTP Gateway have no header check timeout leading to potential slow loris attacks — chall-manager 7.5AIHighAI2025-07-10
CVE-2025-53531 WeGIA allows Uncontrolled Resource Consumption via the fid parameter — WeGIA 7.5AIHighAI2025-07-07
CVE-2025-53530 WeGIA allows Uncontrolled Resource Consumption via the errorstr parameter — WeGIA 7.5AIHighAI2025-07-07
CVE-2025-48367 Redis DoS Vulnerability due to bad connection error handling — redis 7.5 High2025-07-07
CVE-2025-7070 IROAD Dashcam Q9 MFA Pairing Request allocation of resources — Dashcam Q9 4.3 Medium2025-07-04
CVE-2025-3279 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-06-26
CVE-2025-52889 Incus vulnerable to DoS through antispoofing nftables firewall rule bypass on bridge networks with ACLs — incus 3.4 Low2025-06-25
CVE-2025-2403 Hitachi Relion多款产品 安全漏洞 — Relion 670/650 and SAM600-IO 7.5 High2025-06-24
CVE-2025-3221 IBM InfoSphere Information Server denial of service — InfoSphere Information Server 7.5 High2025-06-21
CVE-2025-52917 Yealink YMCS RPS API 安全漏洞 — RPS 4.3 Medium2025-06-21
CVE-2025-4821 Incorrect congestion window growth by invalid ACK ranges — quiche 7.5 High2025-06-18
CVE-2025-4820 Incorrect congestion window growth by optimistic ACK — quiche 5.3 Medium2025-06-18
CVE-2025-45526 microlight.js 安全漏洞 — microlight 2.9 Low2025-06-17
CVE-2025-48988 Apache Tomcat: FileUpload large number of parts with headers DoS — Apache Tomcat 7.5 -2025-06-16
CVE-2025-1478 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-06-12
CVE-2025-1516 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-06-12
CVE-2025-5996 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-06-12
CVE-2025-25032 IBM Cognos Analytics denial of service — Cognos Analytics 7.5 High2025-06-11
CVE-2025-48448 Admin Audit Trail - Less critical - Denial of Service - SA-CONTRIB-2025-068 — Admin Audit Trail 8.1AIHighAI2025-06-11
CVE-2025-49140 Pion Interceptor's improper RTP padding handling allows remote crash for SFU users (DoS) — interceptor 7.5 High2025-06-09
CVE-2025-25207 Rhcl: authpolicy callbacks result in denial of service in authorino severity 5.7 Medium2025-06-09
CVE-2025-47950 CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification — coredns 7.5 High2025-06-06
CVE-2025-22484 File Station 5 — File Station 5 5.0AIMediumAI2025-06-06
CVE-2025-29872 File Station 5 — File Station 5 5.0AIMediumAI2025-06-06
CVE-2024-58114 Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.0 Medium2025-06-06

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 795 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.