Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,152 vulnerabilities with CWE-400

CVE-2017-5867 MEDIUM

ownCloud < 8.1.11, 8.2.x < 8.2.9, 9.0.x < 9.0.7, 9.1.x < 9.1.3 - Authenticated Denial of Service via One-Bit BMP File

CVE-2017-5972 HIGH

Linux Kernel 3.0.0-3.19.8 - Denial of Service via TCP SYN Flood

CVE-2017-5544 MEDIUM

FiberHome Fengine S5800 Firmware - Unauthenticated Denial of Service via SSH Login Timeout Exhaustion

CVE-2017-5351 HIGH

Samsung Mobile Note - Denial of Service via VR Service Thread Exhaustion

CVE-2016-1544 LOW

nghttp2 < 1.7.1 - Denial of Service via Memory Exhaustion

CVE-2016-7068 MEDIUM

PowerDNS Authoritative < 3.4.11 and Recursor < 3.7.4 - Unauthenticated Denial of Service via Crafted DNS Queries

CVE-2016-7072 MEDIUM

PowerDNS Authoritative < 3.4.11 and 4.0.2 - Unauthenticated Denial of Service via TCP Connection Exhaustion

CVE-2016-9040 MEDIUM

Joyent SmartOS - Denial of Service via Hyprlofs Ioctl HYPRLOFSADDENTRIES Command

CVE-2016-9596 MEDIUM

Redhat Jboss Core Services < 2.9.4 - Denial of Service

CVE-2016-8611 MEDIUM

OpenStack Glance - Denial of Service via Unbounded Image Upload

CVE-2016-10724 HIGH

Bitcoin Core < 0.13.0 - Denial of Service via Remote Network Alert System

CVE-2016-10544 MEDIUM

uws 0.10.0-0.10.8 - Denial of Service via WebSocket Message Decompression

CVE-2016-10542 HIGH

WS < 1.1.0 - Denial of Service

CVE-2016-10540 HIGH

minimatch < 3.0.1 - Regular Expression Denial of Service via Pattern Parameter

CVE-2016-10539 HIGH

negotiator < 0.6.0 - Regular Expression Denial of Service via Accept-Language Header

CVE-2016-10527 HIGH

riot-compiler < 2.3.22 - Denial of Service via Catastrophic Backtracking

CVE-2016-10524 HIGH

i18n-node-angular < 1.4.0 - Denial of Service via Unrestricted REST API Endpoint

CVE-2016-10523 HIGH

mqtt-packet < 3.4.6 - Denial of Service via Crafted MQTT Packets

CVE-2016-10521 HIGH

jshamcrest 0.6.7-0.7.0 - Regular Expression Denial of Service in Email Address Validator

CVE-2016-10520 HIGH

jadedown < 0.0.3 - Regular Expression Denial of Service

CVE-2016-8627 MEDIUM

admin-cli <3.0.0.alpha25, 2.2.1.cr2 - CSRF

CVE-2016-9589 HIGH

Red Hat JBoss WildFly Application Server < 10.1.0 - Denial of Service via HTTP Header Cache Exhaustion

CVE-2016-8610 HIGH

OpenSSL 0.9.8 1.0.1 1.0.2-1.0.2h 1.1.0 - Denial of Service via ALERT Packet Processing

CVE-2016-8734 MEDIUM

Apache Subversion <1.8.16, <1.9.4 - DoS

CVE-2016-6312 MEDIUM

Red Hat Enterprise Linux 5.11 - Authenticated Denial of Service via mod_dontdothat Entity Expansion

Previous Page 119 of 127 Next

Details

Vulnerabilities 3,152

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy