Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,152 vulnerabilities with CWE-400

CVE-2019-16764 MEDIUM

PowAssent < 0.4.4 - Denial of Service via String.to_atom/1

CVE-2019-11287 HIGH

RabbitMQ 3.7.0-3.7.20 and 3.8.0 - Denial of Service via X-Reason HTTP Header Format String

CVE-2019-15593 MEDIUM

GitLab 12.2.3 - Denial of Service via Issue Comments

CVE-2019-6661 HIGH

BIG-IP APM 11.5.1-11.6.5 - Uncontrolled Resource Consumption in APD/APMD Daemon

CVE-2019-6660 HIGH

F5 BIG-IP 13.1.0-13.1.1, 14.0.0-14.0.1, 14.1.0-14.1.2 - Denial of Service via Uncontrolled Resource Consumption

CVE-2019-13555 MEDIUM

Mitsubishi Electric MELSEC-Q and MELSEC-L Series Firmware - Denial of Service via FTP Service

CVE-2019-17360 HIGH

Hitachi Command Suite 7.0.0-00-8.7.0-00 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption

CVE-2019-10504 MEDIUM

Qualcomm Mdm9206 Firmware - Denial of Service

CVE-2019-12625 HIGH

ClamAV < 0.101.3 - Unauthenticated Denial of Service via Zip Bomb

CVE-2019-5043 HIGH

Nest Cam IQ Indoor Firmware 4620002 - Denial of Service via Weave Daemon TCP Connection Exhaustion

CVE-2019-7620 HIGH

Logstash 6.0.0-6.8.3 - Unauthenticated Denial of Service via Beats Input Plugin

CVE-2019-15264 MEDIUM

Cisco Aironet and Catalyst 9100 Access Points - Unauthenticated Denial of Service via CAPWAP Message Flood

CVE-2019-17592 HIGH

csv-parse < 4.4.6 - Regular Expression Denial of Service via __isInt Function

CVE-2019-13921 HIGH

SIMATIC WinAC RTX (F) 2010 < SP3 Update 1 - DoS

CVE-2019-10936 HIGH

Siemens SIMATIC and DK Standard Ethernet Controller Firmware - Unauthenticated Denial of Service via UDP Packet Flood

CVE-2019-10923 HIGH

Siemens CP1604 Firmware < 2.8 - Denial of Service via IRT Synchronization Disruption

CVE-2019-0059 HIGH

Juniper Junos OS 18.1 < 18.1R2-S4, 18.1 < 18.1R3-S1, 18.1X75 - Denial of Service via BGP State Processing

CVE-2019-15226 HIGH

Envoy 1.10.0-1.11.1 - Denial of Service via O(n^2) Header Size Verification

CVE-2019-6015 HIGH

FON2601E-SE/RE/FSW-S/FSW-B < 1.1.7 - Uncontrolled Resource Consumption via Open DNS Resolver

CVE-2019-15256 HIGH

Cisco ASA 9.7-9.8.4.10/9.9-9.9.2.47 & FTD 6.2.0-6.2.3.11 - DoS via IKEv1 Traffic

CVE-2019-12714 MEDIUM

Cisco IC3000 Industrial Compute Gateway Firmware < 1.1.1 - Authenticated Denial of Service via Web Management Interface

CVE-2019-12700 MEDIUM

Cisco Firepower Threat Defense, Firepower Management Center, and FXOS - Authenticated DoS via PAM SSH Session Exhaustion

CVE-2019-12698 HIGH

Cisco ASA & FTD Unauthenticated DoS via WebVPN HTTP Request

CVE-2019-9349 MEDIUM

Android 10 - Remote Denial of Service via Improper Input Validation in libstagefright

CVE-2019-12659 HIGH

Cisco IOS XE - Unauthenticated Denial of Service via HTTP Server Logging Mechanism

Previous Page 101 of 127 Next

Details

Vulnerabilities 3,152

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy