Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 795

795 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-27540 IBM Watson CP4D Data Stores denial of service — Watson CP4D Data Stores 5.9 Medium2023-07-10
CVE-2023-3566 wallabag Profile Config config allocation of resources — wallabag 3.5 Low2023-07-08
CVE-2023-36461 Mastodon vulnerable to Denial of Service through slow HTTP responses — mastodon 7.5 High2023-07-06
CVE-2023-36814 zopefoundation's Products.CMFCore vulnerable to unauthenticated denial of service and crash via unchecked use of input with Python's marshal module — Products.CMFCore 7.5 High2023-07-03
CVE-2023-34455 snappy-java's unchecked chunk length leads to DoS — snappy-java 7.5 High2023-06-15
CVE-2023-34396 Apache Struts: DoS via OOM owing to no sanity limit on normal form fields in multipart forms — Apache Struts 4.3 Medium2023-06-14
CVE-2023-34149 Apache Struts: DoS via OOM owing to not properly checking of list bounds — Apache Struts 4.3 Medium2023-06-14
CVE-2023-0121 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 6.5 Medium2023-06-07
CVE-2023-0921 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 4.3 Medium2023-06-06
CVE-2023-32699 MeterSphere denial of service vulnerability — metersphere 6.5 Medium2023-05-30
CVE-2023-2666 Allocation of Resources Without Limits or Throttling in froxlor/froxlor — froxlor/froxlor 8.1 -2023-05-12
CVE-2023-30551 Rekor's compressed archives can result in OOM conditions — rekor 7.5 High2023-05-08
CVE-2023-27556 IBM Safer Payments denial of service — Safer Payments 6.5 Medium2023-04-28
CVE-2023-0383 Uncontrolled Resource Consuption in M-Files Server — M-Files Server 7.5 High2023-04-20
CVE-2022-43768 Siemens SIMATIC CP443-1 OPC UA9 安全漏洞 — SIMATIC CP 1242-7 V2 7.5 High2023-04-11
CVE-2023-0382 Uncontrolled Resource Consumption in M-Files Server — M-Files Server 6.5 Medium2023-04-05
CVE-2023-27492 Envoy may crash when a large request body is processed in Lua filter — envoy 4.8 Medium2023-04-04
CVE-2023-20067 Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability — Cisco IOS XE Software 7.4 High2023-03-23
CVE-2023-28119 crewjam/saml vulnerable to Denial Of Service Via Deflate Decompression Bomb — saml 7.5 High2023-03-22
CVE-2023-28428 PDFio vulnerable to Denial Of Service when opening a corrupt PDF file — pdfio 6.2 Medium2023-03-20
CVE-2023-28107 Discourse vulnerable to multisite DoS by spamming backups — discourse 4.5 Medium2023-03-17
CVE-2023-28104 silverstripe/graphql Denial of Service vulnerability — silverstripe-graphql 7.5 High2023-03-16
CVE-2023-27596 OpenSIPS has vulnerability in the codec_delete_XX() functions — opensips 7.5 High2023-03-15
CVE-2023-23916 curl 安全漏洞 — https://github.com/curl/curl 7.5 -2023-02-23
CVE-2023-24998 Apache Commons FileUpload, Apache Tomcat: FileUpload DoS with excessive parts — Apache Commons FileUpload 7.5 -2023-02-20
CVE-2021-32848 Octobox ReDoS vulnerability — octobox 7.5 High2023-02-20
CVE-2023-25656 notation-go has excessive memory allocation on verification — notation-go 7.5 High2023-02-20
CVE-2023-25153 containerd OCI image importer memory exhaustion — containerd 6.2 Medium2023-02-16
CVE-2023-25578 Starlite DoS vulnerability when parsing multipart request body — starlite 7.5 High2023-02-15
CVE-2023-25156 Kiwi TCMS has no protection against brute-force attacks on login page — kiwi 7.5 High2023-02-15

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 795 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.