Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,152 vulnerabilities with CWE-400

CVE-2019-11390 MEDIUM

OWASP ModSecurity Core Rule Set <3.1.0 - DoS

CVE-2019-11389 MEDIUM

OWASP ModSecurity Core Rule Set <3.1.0 - DoS

CVE-2019-11388 MEDIUM

OWASP ModSecurity Core Rule Set <3.1.0 - DoS

CVE-2019-11387 MEDIUM

OWASP ModSecurity Core Rule Set <3.1.0 - DoS

CVE-2019-9220 HIGH

GitLab < 11.6.10, 11.7.x < 11.7.6, 11.8.x < 11.8.1 - Uncontrolled Resource Consumption

CVE-2019-10953 HIGH

ABB PM554-TP-ETH Firmware - Denial of Service via Network Packet Flood

CVE-2019-0038 MEDIUM

Juniper Junos OS 15.1X49-18.3 - Denial of Service via Crafted Packets to Management Interface

CVE-2019-0033 HIGH

Junos 12.1X46-D25-12.1X46-D70 - Denial of Service via Proxy ARP Service

CVE-2019-0031 HIGH

Junos 17.4-17.4r1 and 18.1-18.1r1 - Denial of Service via IPv6 DHCP Packet Handling

CVE-2019-0199 HIGH

Apache Tomcat 8.5.0-8.5.37 and 9.0.0.M1-9.0.14 - Denial of Service via HTTP/2 Stream Exhaustion

CVE-2019-4080 MEDIUM

IBM WebSphere Application Server 7.0.0.0-7.0.0.45 - Denial of Service via Improper Parameter Parsing

CVE-2019-5739 HIGH

Node.js < 6.16.0 - Denial of Service via Keep-Alive Timeout

CVE-2019-5737 HIGH

Node.js 6.x < 6.17.0, 8.x < 8.15.1, 10.x < 10.15.2, 11.x < 11.10.1 - Denial of Service via Slow HTTP Headers

CVE-2019-1737 HIGH

Cisco IOS XE - Unauthenticated Denial of Service via IP SLA Packet Handling

CVE-2019-5419 HIGH

Action View (Rails) <5.2.2.1-5.0.7.2 - DoS

CVE-2019-4046 HIGH

IBM WebSphere Application Server 7.0-7.0.0.44 8.0-8.5 9.0 < 19.0.0.4 - Denial of Service via Request Header Handling

CVE-2019-3874 MEDIUM

Linux Kernel 3.10.1-3.10.107 - Denial of Service via SCTP Socket Buffer

CVE-2019-9750 CRITICAL

IoTivity < 1.3.1 - Distributed Denial of Service via CoAP Server Response Amplification

CVE-2019-9587 HIGH

Xpdf 4.01 - Denial of Service

CVE-2019-6559 MEDIUM

Moxa IKS-G6824A Firmware < 4.5 and EDS Firmware < 3.8 - Authenticated Denial of Service via Crafted Packet

CVE-2019-8909 HIGH

WTCMS 1.0 - Denial of Service via Verification Code Image Dimensions

CVE-2019-1672 MEDIUM

Cisco Web Security Appliance - Unauthenticated Policy Bypass via SSL Traffic Handling

CVE-2019-6535 HIGH

Mitsubishielectric Q03udvcpu Firmware < 20081 - Denial of Service

CVE-2019-6986 HIGH

Vitro < 1.11.0 - Regular Expression Denial of Service via SPARQL Injection in URI Parameter

CVE-2019-1644 HIGH

Cisco IoT Field Network Director - Denial of Service via UDP Packet Flood

Previous Page 104 of 127 Next

Details

Vulnerabilities 3,152

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy