CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,152 vulnerabilities with CWE-400
CVE-2018-5541
HIGH
F5 BIG-IP ASM DoS via HTTP Parameter Flood (11.5.1-11.5.6, 11.6.0-11.6.3.1, 12.1.0-12.1.3.5, 13.0.0-13.1.0.1)
CVSS 7.5
CVE-2018-5530
HIGH
F5 BIG-IP 11.6.0-11.6.3.1, 12.1.0-12.1.3.5, 13.0.0-13.1.0.5 - Uncontrolled Resource Consumption via HPACK Bomb
CVSS 7.5
CVE-2018-14596
HIGH
wancms 1.0-5.0 - Denial of Service via Large Verification Code Parameters
CVSS 7.5
CVE-2018-10632
HIGH
Moxa NPort 5210, 5230, and 5232 <= 2.9 build 17030709 - Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2018-10608
HIGH
SEL AcSELerator Architect <2.2.24.0 - DoS
CVSS 7.5
CVE-2018-0372
HIGH
Cisco NX-OS 13.0(1k) - Unauthenticated Denial of Service via DHCPv6 Packet Processing
CVSS 7.5
CVE-2018-0031
MEDIUM
Junos OS - Uncontrolled Resource Consumption via Crafted UDP/IP Packets over MPLS
CVSS 5.3
CVE-2018-0030
HIGH
Juniper Junos OS - Denial of Service via MPLS Packet Processing
CVSS 7.5
CVE-2018-0029
MEDIUM
Junos OS 15.1-17.4 - Denial of Service via Broadcast Storm in Promiscuous Mode
CVSS 5.7
CVE-2018-3767
CRITICAL
memjs <= 1.1.0 - Denial of Service via Uncontrolled Resource Consumption
CVSS 9.1
CVE-2018-13251
MEDIUM
libming 0.4.8 - Denial of Service via Crafted SWF File
CVSS 6.5
CVE-2018-1000518
HIGH
websockets 4.0-4.9 - Denial of Service via Compressed Frame Amplification
CVSS 7.5
CVE-2018-12641
MEDIUM
GNU libiberty 2.30 - Stack Exhaustion
CVSS 5.5
CVE-2018-0309
HIGH
Cisco NX-OS - Authenticated Denial of Service via CLI Command or SNMP OID Polling
CVSS 7.7
CVE-2018-1333
HIGH
Apache HTTP Server 2.4.18-2.4.30,2.4.33 - Denial of Service via HTTP/2 Request Handling
CVSS 7.5
CVE-2018-7164
HIGH
Node.js 9.7.0-9.11.2 - Denial of Service via net.Socket Stream Memory Consumption
CVSS 7.5
CVE-2018-12066
MEDIUM
BIRD Internet Routing Daemon <1.6.4 - DoS
CVSS 5.5
CVE-2018-3739
CRITICAL
https-proxy-agent < 2.1.1 - Denial of Service via Auth Parameter Buffer Handling
CVSS 9.1
CVE-2018-6237
HIGH
Trend Micro Smart Protection Server 3.x - Unauthenticated Denial of Service via HTTP Request Flood
CVSS 7.5
CVE-2018-10827
HIGH
LiteCart < 2.1.2 - Denial of Service via Unbounded Not-Found Log Growth
CVSS 7.5
CVE-2018-0285
MEDIUM
Cisco Prime Service Catalog - Denial of Service via Excessive Logging
CVSS 6.5
CVE-2018-1277
MEDIUM
Cloud Foundry Garden-runC < 1.13.0 - Authenticated Denial of Service via Docker Image Layer Quota Bypass
CVSS 6.5
CVE-2018-0233
HIGH
Cisco Secure Firewall Management Center - Unauthenticated Denial of Service via SSL Packet Reassembly
CVSS 8.6
CVE-2018-0230
HIGH
Cisco Firepower Threat Defense 6.2.1-6.2.2 - Unauthenticated Denial of Service via Malformed IPv4/IPv6 Packet Reassembly
CVSS 8.6
CVE-2018-7920
HIGH
Huawei AR1200, AR160, AR200, AR2200, AR3200 V200R006C10SPC300 - Denial of Service via TCP Message Flood
CVSS 7.5
Details
Vulnerabilities
3,152
Exploit Likelihood
High