Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,094 vulnerabilities with CWE-400

CVE-2026-46374 HIGH

SQLFluff: Uncontrolled Resource Consumption in Parser

CVE-2026-47905 MEDIUM

CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-47904 MEDIUM

CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-47902 MEDIUM

CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-34713 HIGH

CAI Content Credentials | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-36724 MEDIUM

FastapiAdmin 2.2.0 - Authenticated Denial of Service via Scheduled Task Func Field Manipulation

CVE-2026-49842 HIGH

FreeSWITCH: Pre-authentication bandwidth amplification via `mod_verto` speed-test frames

CVE-2026-49160 HIGH

Microsoft Windows HTTP.sys HTTP/2 - Denial of Service

CVE-2026-45591 HIGH

Microsoft ASP.NET Core - Unauthenticated Denial of Service

CVE-2026-49762 MEDIUM

Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service

CVE-2026-11790 MEDIUM

389-ds-base: 389-ds-base: pbkdf2 password storage plugin unbounded iteration count denial of service

CVE-2026-41842 HIGH

Spring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux

CVE-2026-41840 MEDIUM

Spring Framework Denial of Service via Multipart Requests in WebFlux

CVE-2026-40984 HIGH

Micrometer HTTP server instrumentations DoS vulnerability

CVE-2026-40983 HIGH

Micrometer gRPC server instrumentation DoS vulnerability

CVE-2026-11611 MEDIUM

389-ds-base: 389-ds-base: content sync plugin unbounded queue growth and race conditions

CVE-2026-11478 LOW

kokke tiny-regex-c Pattern re.c matchstar redos

CVE-2026-47707 MEDIUM

Strawberry GraphQL's Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification

CVE-2026-47706 MEDIUM

Strawberry GraphQL 0.71.0-0.315.6 Fragments - Denial of Service

CVE-2026-28318 HIGH KEV

SolarWinds Serv-U Unauthenticated Denial of Service Vulnerability

CVE-2026-10802 MEDIUM

keystonejs keystone GraphQL API Endpoint output-field.ts resource consumption

CVE-2026-50212 MEDIUM

Acer Connect M6E 5G Portable WiFi Router - Arbitrary Remote Device Unbinding

CVE-2026-36605 MEDIUM

Mercusys AC12G (EU) V1 Firmware AC12G(EU)_V1_200909 - Denial of Service via Crafted Incomplete HTTP Requests

CVE-2026-10705 LOW

dask HLL hyperloglog.py nunique_approx resource consumption

CVE-2026-10692 MEDIUM

johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos

Previous Page 2 of 124 Next

Details

Vulnerabilities 3,094

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy