CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,100 vulnerabilities with CWE-400
CVE-2026-0517
HIGH
Absolute Secure Access < 14.20 - Denial of Service via Crafted Packet
CVSS 7.5
CVE-2026-0992
LOW
Red Hat Enterprise Linux 6-10 - Denial of Service via XML Catalog Processing
CVSS 2.9
CVE-2026-22239
MEDIUM
BLUVOYIX - Unauthenticated Email Spoofing via Email Sending API
CVSS 5.3
CVE-2026-0889
HIGH
Firefox < 147.0 - Denial of Service in DOM Service Workers
CVSS 7.5
CVE-2026-22691
MEDIUM
pypdf < 6.6.0 - Denial of Service via Malformed startxref Processing
CVSS 5.3
CVE-2026-22690
MEDIUM
pypdf < 6.6.0 - Uncontrolled Resource Consumption via Missing /Root Object
CVSS 5.3
CVE-2026-21500
MEDIUM
iccdev < 2.3.1.2 - Stack Overflow in XML Calculator Macro Expansion
CVSS 5.5
CVE-2026-22542
CRITICAL
EFACEC QC 60/90/120 - Denial of Service via Concurrent Telnet Connections
CVE-2026-22541
HIGH
EFACEC QC 60/90/120 - Denial of Service via ICMP Flood
CVE-2026-22540
CRITICAL
EFACEC QC60/90/120 - Denial of Service via ARP Request Flood
CVE-2026-21485
HIGH
iccdev < 2.3.1.2 - Out-of-bounds Read
CVSS 8.8
CVE-2026-21452
HIGH
MessagePack for Java < 0.9.11 - Denial of Service via EXT32 Payload Length
CVSS 7.5
CVE-2025-52293
HIGH
GPAC MP4Box 2.4 - Denial of Service via Crafted HEVC SPS Data
CVSS 7.5
CVE-2025-48648
MEDIUM
Android 14-16 NotificationManagerService - Resource Exhaustion Denial of Service
CVSS 5.5
CVE-2025-56352
HIGH
tinyMQTT - Denial of Service via CONNECT Packet Protocol Violation
CVSS 7.5
CVE-2025-10470
HIGH
Denial-of-Service via Magic Link Authentication in WSO2 Identity Server Allows Service Unavailability
CVSS 8.6
CVE-2025-65122
HIGH
youtube-regex < 1.0.5 - Regex Denial of Service
CVSS 7.5
CVE-2025-70071
MEDIUM
Assimp 6.0.2 - Denial of Service via FBX Parser Vector Data Array
CVSS 5.9
CVE-2025-70069
HIGH
Assimp 6.0.2 - Denial of Service via FBXConverter.cpp ConvertMeshMultiMaterial Method
CVSS 7.5
CVE-2025-46115
HIGH
open5gs 2.7.3 - Denial of Service via Crafted PDU Session Modification Request
CVSS 7.5
CVE-2025-58349
CRITICAL
Samsung Exynos Firmware - Denial of Service via LTE MAC Packet Handling
CVSS 9.1
CVE-2025-54324
HIGH
Samsung Exynos Firmware - Denial of Service via DL NAS Transport Packet Handling
CVSS 7.5
CVE-2025-59440
HIGH
Samsung Exynos Firmware - Denial of Service via SIM Card Proactive Command Handling
CVSS 7.5
CVE-2025-68971
MEDIUM
Forgejo <= 13.0.3 - Denial of Service via Large File Attachment Upload
CVSS 6.5
CVE-2025-52636
LOW
HCL AION is affected by a improper handling of uploads files Size
CVSS 1.8
Details
Vulnerabilities
3,100
Exploit Likelihood
High