CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,152 vulnerabilities with CWE-400
CVE-2019-3554 MEDIUM
Wangle < 2019.01.14.00 - Denial of Service via TLS 1.3 Socket Miscount
CVSS 5.9
CVE-2018-9447 MEDIUM
Android - Denial of Service via EmergencyCallbackModeExitDialog Null Pointer
CVSS 5.5
CVE-2018-9412 MEDIUM
Android - Denial of Service via Improper Input Validation in ID3.cpp
CVSS 5.5
CVE-2018-25100 MEDIUM
Mojolicious <7.66 - Info Disclosure
CVSS 5.3
CVE-2018-10868 HIGH
redhat-certification 7 - XML External Entity Injection via XMLRPC Status Reply
CVSS 7.5
CVE-2018-1109 MEDIUM
braces 2.2.0-2.3.0 - Regular Expression Denial of Service
CVSS 5.3
CVE-2018-1107 MEDIUM
is-my-json-valid <1.4.1 and >=2.0.0 <2.17.2 - Uncontrolled Resource Consumption via Email Format Validation
CVSS 5.3
CVE-2018-1000893 HIGH
Bitcoin SV < 0.1.1 - Denial of Service via Transaction Deserialization
CVSS 7.5
CVE-2018-1000892 HIGH
Bitcoin SV < 0.1.1 - Denial of Service via Sendheaders Message
CVSS 7.5
CVE-2018-1000891 HIGH
Bitcoin SV < 0.1.1 - Denial of Service via Invalid Checksum Messages
CVSS 7.5
CVE-2018-7580 HIGH
Philips Hue Firmware - Denial of Service via TCP SYN Flood
CVSS 7.5
CVE-2018-4474 HIGH
Apple iCloud <7.7, iTunes <12.9, Safari <12, iOS <12.0, tvOS <12, watchOS <5.0 - DoS via Memory Consumption
CVSS 7.5
CVE-2018-4381 MEDIUM
iPhone OS < 12.1 - Denial of Service via Maliciously Crafted Message
CVSS 5.5
CVE-2018-10585 HIGH
Pexip Infinity < 18 - Denial of Service via XML Parsing
CVSS 7.5
CVE-2018-10432 HIGH
Pexip Infinity < 18 - Remote Denial of Service via TLS Handshake in RTMP
CVSS 7.5
CVE-2018-17145 HIGH
Bitcoin Core <0.16.2 & Bitcoin Knots <0.16.2 - DoS
CVSS 7.5
CVE-2018-21250 MEDIUM
Mattermost Server < 4.10.4 - Denial of Service via Crafted Image Dimensions
CVSS 6.5
CVE-2018-16848 MEDIUM
OpenStack Mistral <= 7.0.3 - Denial of Service via Nested Anchors in Workflow YAML
CVSS 6.5
CVE-2018-21240 HIGH
Foxit Reader and PhantomPDF < 9.2 - Uncontrolled Resource Consumption via ArrayBuffer
CVSS 7.5
CVE-2018-21238 HIGH
Foxit PhantomPDF < 8.3.7 - Uncontrolled Resource Consumption via ArrayBuffer
CVSS 7.5
CVE-2018-19167 HIGH
CloakCoin < 2.2.2.0 - Denial of Service via Invalid Block Headers
CVSS 7.5
CVE-2018-19166 HIGH
peercoin <= 0.6.4 - Remote Denial of Service via Invalid Headers/Blocks
CVSS 7.5
CVE-2018-19165 HIGH
neblio < 1.5.1 - Remote Denial of Service via Invalid Block Headers
CVSS 7.5
CVE-2018-19164 HIGH
reddcoin <= 2.1.0.5 - Denial of Service via Invalid Block Headers
CVSS 7.5
CVE-2018-19163 HIGH
stratisX < 2.0.0.5 - Denial of Service via Invalid Block Headers
CVSS 7.5
Details
Vulnerabilities 3,152
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits