Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 795

795 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-49007 ReDoS Vulnerability in Rack::Multipart handle_mime_head — rack 7.5AIHighAI2025-06-04
CVE-2018-25112 PHOENIX CONTACT: ILC 1x1 ETH Denial of Service — ILC 131 7.5 High2025-06-04
CVE-2025-46807 File Descriptor Exhaustion in sslh-select and sslh-ev triggers SEGFAULT — sslh 7.5AIHighAI2025-06-02
CVE-2025-3050 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2025-05-29
CVE-2025-48375 Schule Missing Rate Limiting on OTP Email Requests – Susceptible to Abuse & DoS — Schule 8.2AIHighAI2025-05-23
CVE-2024-7803 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-05-23
CVE-2025-48738 StrangeBee TheHive 安全漏洞 — TheHive 8.2AIHighAI2025-05-23
CVE-2025-0993 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 7.5 High2025-05-22
CVE-2025-2853 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-05-22
CVE-2025-3111 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-05-22
CVE-2025-4416 Events Log Track - Moderately critical - Denial of Service - SA-CONTRIB-2025-059 — Events Log Track 6.5AIMediumAI2025-05-21
CVE-2025-47793 Nextcloud Server and Groupfolders app vulnerable to bypass of group folder quota limit using attachment in text file — security-advisories 4.3 Medium2025-05-16
CVE-2025-47287 Tornado vulnerable to excessive logging caused by malformed multipart form data — tornado 7.5 High2025-05-15
CVE-2024-8973 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-05-09
CVE-2025-4432 Ring: some aes functions may panic when overflow checking is enabled in ring 5.3 Medium2025-05-09
CVE-2025-32873 Django 安全漏洞 — Django 5.3 Medium2025-05-08
CVE-2025-36504 BIG-IP HTTP/2 vulnerability — BIG-IP 7.5 High2025-05-07
CVE-2025-0915 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2025-05-05
CVE-2025-1000 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2025-05-05
CVE-2025-32777 Volcano Scheduler Denial of Service via Unbounded Response from Elastic Service/extender Plugin — volcano 6.5AIMediumAI2025-04-30
CVE-2025-24341 Bosch Rexroth ctrlX OS 安全漏洞 — ctrlX OS - Device Admin 6.5 Medium2025-04-30
CVE-2025-30202 Data exposure via ZeroMQ on multi-node vLLM deployment — vllm 7.5 High2025-04-30
CVE-2025-46687 QuickJS 安全漏洞 — QuickJS 5.6 Medium2025-04-27
CVE-2025-30409 Acronis Cyber Protect Cloud Agent 安全漏洞 — Acronis Cyber Protect Cloud Agent 7.5 -2025-04-24
CVE-2025-0639 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2025-04-24
CVE-2025-35965 DoS in Mattermost Playbooks via Excessive Task Actions — Mattermost 6.5 Medium2025-04-24
CVE-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client — redis 7.5 High2025-04-23
CVE-2025-32959 CUBA Vulnerable to Denial of Service (DoS) in the File Storage — cuba 6.5 Medium2025-04-22
CVE-2025-32952 io.jmix.localfs:jmix-localfs affected by DoS in the Local File Storage — jmix 6.5 Medium2025-04-22
CVE-2025-3734 Stage File Proxy - Moderately critical - Denial of Service - SA-CONTRIB-2025-035 — Stage File Proxy 7.5AIHighAI2025-04-16

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 795 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.