Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 795

795 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-36104 Denial of Service via Page Error Handling in TYPO3/cms — typo3 5.9 Medium2022-09-13
CVE-2022-0480 Linux kernel 安全漏洞 — kernel 5.5 -2022-08-29
CVE-2022-0084 Red Hat Data Grid 安全漏洞 — xnio 7.5 -2022-08-26
CVE-2020-14322 Moodle 输入验证错误漏洞 — Moodle 7.5 -2022-08-16
CVE-2022-36324 多款Siemens SCALANCE产品安全漏洞 — RUGGEDCOM RM1224 LTE(4G) EU 7.5 High2022-08-10
CVE-2022-36124 Memory overconsumption in Avro Rust SDK — Apache Avro 7.5 -2022-08-09
CVE-2022-31118 Missing brute force protection on cloud federation sharing in Nextcloud Server — security-advisories 6.5 Medium2022-08-04
CVE-2022-35221 TEAMPLUS TECHNOLOGY INC. Teamplus Pro - Allocation of Resources Without Limits or Throttling-2 — Teamplus Pro 5.4 Medium2022-08-02
CVE-2022-35220 TEAMPLUS TECHNOLOGY INC. Teamplus Pro - Allocation of Resources Without Limits or Throttling-1 — Teamplus Pro 7.7 High2022-08-02
CVE-2022-31184 Email activation route can be abused by spammers in Discourse — discourse 6.5 Medium2022-08-01
CVE-2022-22212 Junos OS Evolved: A high rate of specific hostbound traffic will cause unexpected hostbound traffic delays or drops — Junos OS Evolved 7.5 High2022-07-20
CVE-2022-32958 TEAMPLUS TECHNOLOGY INC. Teamplus Pro - Allocation of Resources Without Limits or Throttling — Teamplus Pro (Private cloud) 7.7 High2022-07-20
CVE-2022-32205 curl 资源管理错误漏洞 — https://github.com/curl/curl 5.3 -2022-07-07
CVE-2022-32206 curl 资源管理错误漏洞 — https://github.com/curl/curl 7.5 -2022-07-07
CVE-2022-2134 Allocation of Resources Without Limits or Throttling in inventree/inventree — inventree/inventree 7.5 -2022-06-20
CVE-2022-29404 Denial of service in mod_lua r:parsebody — Apache HTTP Server 7.5 -2022-06-08
CVE-2022-22971 Spring Framework 输入验证错误漏洞 — Spring Framework 6.5 -2022-05-12
CVE-2022-22970 Spring Framework 输入验证错误漏洞 — Spring Framework 6.5 -2022-05-12
CVE-2022-20757 Cisco Firepower Threat Defense Software Denial of Service Vulnerability — Cisco Firepower Threat Defense Software 8.6 High2022-05-03
CVE-2022-20751 Cisco Firepower Threat Defense Software Snort Out of Memory Denial of Service Vulnerability — Cisco Firepower Threat Defense Software 8.6 High2022-05-03
CVE-2022-22278 Sonicwall SonicOS 安全漏洞 — SonicOS 7.5 -2022-04-27
CVE-2022-20622 Cisco Embedded Wireless Controller with Catalyst Access Points IP Flood Denial of Service Vulnerability — Cisco Aironet Access Point Software 8.6 High2022-04-15
CVE-2022-1333 A specifically drafted Playbook could trigger large amount of webhook requests leading to Denial of Service — Mattermost Playbooks 3.5 Low2022-04-13
CVE-2022-22950 Vmware Spring Framework 安全漏洞 — Spring Framework 6.5 -2022-04-01
CVE-2022-21822 NVIDIA FLARE 安全漏洞 — NVIDIA FLARE 7.5 High2022-03-17
CVE-2021-32476 Moodle 资源管理错误漏洞 — moodle 7.5 -2022-03-11
CVE-2022-26336 A carefully crafted TNEF file can cause an out of memory exception — poi-scratchpad 5.5 -2022-03-04
CVE-2021-32036 Denial of Service and Data Integrity vulnerability in features command — MongoDB Server 5.4 Medium2022-02-04
CVE-2022-23913 Apache ActiveMQ Artemis DoS — Apache ActiveMQ Artemis 7.5 -2022-02-04
CVE-2021-43045 Possible DOS vulnerabilities in C# Avro SDK — Apache Avro 7.5 -2022-01-06

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 795 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.