Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 796

796 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments — cosign 4.2 Medium2024-04-10
CVE-2024-3382 PAN-OS: Firewall Denial of Service (DoS) via a Burst of Crafted Packets — PAN-OS 7.5 High2024-04-10
CVE-2024-26276 Siemens Parasolid 安全漏洞 — JT2Go 3.3 Low2024-04-09
CVE-2024-0081 NVIDIA NeMo 安全漏洞 — NeMo 8.6 High2024-04-05
CVE-2024-27316 Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames — Apache HTTP Server 7.5 -2024-04-04
CVE-2024-30249 Cloudburst Network DoS in RakNet connection handling — Network 8.6 High2024-04-04
CVE-2024-27268 IBM WebSphere Application Server Liberty denial of service — WebSphere Application Server Liberty 5.9 Medium2024-04-04
CVE-2024-28871 Excessive CPU used on malformed traffic — libhtp 7.5 High2024-04-04
CVE-2024-28182 Reading unbounded number of HTTP/2 CONTINUATION frames to cause excessive CPU usage — nghttp2 5.3 Medium2024-04-04
CVE-2024-22189 QUIC's Connection ID Mechanism vulnerable to Memory Exhaustion Attack — quic-go 7.5 High2024-04-04
CVE-2024-28870 Suricata uses excessive resource use in malformed ssh traffic parsing — suricata 7.5 High2024-04-03
CVE-2024-29086 Arkcompiler runtime has a stack overflow svulnerability — OpenHarmony 3.3 Low2024-04-02
CVE-2024-22353 IBM WebSphere Application Server Liberty denial of service — WebSphere Application Server Liberty 5.9 Medium2024-03-31
CVE-2024-2818 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 4.3 Medium2024-03-28
CVE-2024-29025 Netty HttpPostRequestDecoder can OOM — netty 5.3 Medium2024-03-25
CVE-2023-41038 Server crash when using specific form of SET BIND statement — firebird 7.5 High2024-03-20
CVE-2020-11862 Insecure renegotiation in SSL protocol caused Denial of service attack in Privileged Account Manager — NetIQ Privileged Account Manager 8.6 High2024-03-13
CVE-2024-28102 JWCrypto vulnerable to JWT bomb Attack in `deserialize` function — jwcrypto 6.8 Medium2024-03-06
CVE-2024-23837 LibHTP unbounded folded header handling leads to denial service — libhtp 7.5 High2024-02-26
CVE-2024-23836 crafted traffic can cause denial of service — suricata 7.5 High2024-02-26
CVE-2022-34357 IBM Cognos Analytics Mobile Server denial of service — Cognos Analytics 6.5 Medium2024-02-24
CVE-2023-51393 Potential DoS due to BusFault and Assert in Ember ZNet legacy packet buffer — Ember ZNet SDK 5.3 Medium2024-02-23
CVE-2024-0563 Denial of service condition in M-Files Server — M-Files Server 4.3 Medium2024-02-23
CVE-2024-26265 Liferay Portal 和 Liferay DXP 安全漏洞 — Portal 5.0 Medium2024-02-20
CVE-2024-26308 Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file — Apache Commons Compress 7.5 -2024-02-19
CVE-2024-23979 BIG-IP SSL Client Certificate LDAP and CRLDP Authentication profiles vulnerability — BIG-IP 7.5 High2024-02-14
CVE-2024-21771 F5 AFM Signature Matching Vulnerability — BIG-IP 7.5 High2024-02-14
CVE-2024-21875 DoS attack when broadcasting billboard messages — Hacker Hotel Badge 2024 6.5 Medium2024-02-11
CVE-2024-1066 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2024-02-07
CVE-2024-25143 Liferay Portal和Liferay DXP 安全漏洞 — DXP 6.5 Medium2024-02-07

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 796 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.