Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 796

796 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-6037 Arbitrary Folder Creation in gaizhenbiao/chuanhuchatgpt — gaizhenbiao/chuanhuchatgpt 9.1AICriticalAI2024-07-10
CVE-2024-6598 Denial-of-service on KNIME Business Hub when certain jobs are executed — KNIME Business Hub 4.9AIMediumAI2024-07-09
CVE-2024-39876 Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server 4.0 Medium2024-07-09
CVE-2024-37298 Potential memory exhaustion attack due to sparse slice deserialization — schema 7.5 High2024-07-01
CVE-2024-38528 Unlimited number of NTS-KE connections can crash ntpd-rs server — ntpd-rs 7.5 High2024-06-28
CVE-2024-31919 IBM MQ denial of service — MQ 5.9 Medium2024-06-28
CVE-2024-6176 Port scanning vulnerability in LG SuperSign CMS — LG SuperSign CMS--AI2024-06-20
CVE-2024-5208 Uncontrolled Resource Consumption in mintplex-labs/anything-llm — mintplex-labs/anything-llm 6.5AIMediumAI2024-06-19
CVE-2024-37309 Client initialized Session-Renegotiation DoS — crate 5.3 Medium2024-06-13
CVE-2024-31881 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 6.5 Medium2024-06-12
CVE-2024-28762 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2024-06-12
CVE-2024-32871 Pimcore Vulnerable to Flooding Server with Thumbnail files — pimcore 7.5 High2024-06-04
CVE-2024-36378 JetBrains TeamCity 安全漏洞 — TeamCity 5.9 Medium2024-05-29
CVE-2024-35238 Denial of service of Minder Server from maliciously crafted GitHub attestations — minder 5.3 Medium2024-05-27
CVE-2024-35231 rack-contrib vulnerable to Denial of Service due to the unconstrained value of the incoming "profiler_runs" parameter — rack-contrib 8.6 High2024-05-27
CVE-2024-2874 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2024-05-23
CVE-2024-33495 Siemens 多款产品 安全漏洞 — SIMATIC RTLS Locating Manager 6.5 Medium2024-05-14
CVE-2024-25969 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.2 Medium2024-05-14
CVE-2024-28760 IBM App Connect Enterprise denial of service — App Connect Enterprise 4.3 Medium2024-05-11
CVE-2024-32874 In Frigate, Malicious Long Unicode filenames may cause a Multiple Application-level Denial of Service — frigate 6.8 Medium2024-05-09
CVE-2024-2454 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2024-05-09
CVE-2024-4539 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 4.3 Medium2024-05-09
CVE-2024-4140 Email-MIME 安全漏洞 — Email-MIME 7.5 High2024-05-02
CVE-2024-4029 Wildfly: no timeout for eap management interface may lead to denial of service (dos) 4.1 Medium2024-05-02
CVE-2024-25026 IBM WebSphere Application Server denial of service — WebSphere Application Server 5.9 Medium2024-04-25
CVE-2024-32660 FreeRDP zgfx_decompress out of memory vulnerability — FreeRDP 7.5 High2024-04-23
CVE-2024-31208 Synapse's V2 state resolution weakness allows DoS from remote room members — synapse 6.5 Medium2024-04-23
CVE-2024-31446 OpenComputers Denial of Service using xpcall — OpenComputers 7.7 High2024-04-16
CVE-2024-1666 Unauthorized Radar Creation in lunary-ai/lunary — lunary-ai/lunary 5.3 -2024-04-16
CVE-2024-29903 Cosign vulnerable to machine-wide denial of service via malicious artifacts — cosign 4.2 Medium2024-04-10

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 796 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.