Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,102 vulnerabilities with CWE-400

CVE-2025-6075 MEDIUM

os.path.expandvars - Info Disclosure

CVE-2025-64388 CRITICAL

Circutor TCPRS1plus - Denial of Service via Specific Web Server Requests

CVE-2025-30188 HIGH

OX App Suite < 2.1.7 - Denial of Service via Cache Flooding

CVE-2025-8849 HIGH

LibreChat 0.7.9 - Denial of Service via Unbounded Parameters in /api/memories Endpoint

CVE-2025-6176 HIGH

Scrapy < 2.13.4 - Denial of Service via Brotli Decompression Bomb

CVE-2025-5342 MEDIUM

ManageEngine Exchange Reporter Plus <= 5721 - Denial of Service via Search Module ReDOS

CVE-2025-10932 HIGH

Progress MOVEit Transfer - Uncontrolled Resource Consumption

CVE-2025-54605 HIGH

Bitcoin Core < 30.0 - Uncontrolled Resource Consumption

CVE-2025-54604 HIGH

Bitcoin Core < 30.0 - Uncontrolled Resource Consumption

CVE-2025-61155 MEDIUM

GameDriverX64.sys <7.23.4.7 - Privilege Escalation

CVE-2025-60349 HIGH

Prevx 3.0.5.220 - Denial of Service via IOCTL Code 0x22E044

CVE-2025-62260 HIGH

Liferay Portal 7.4.0-7.4.3.99 & DXP 2023.Q3.1-2023.Q3.4, 7.4 GA-92, 7.3 GA-35 - DoS via Headless API

CVE-2025-12194 MEDIUM

Bouncy Castle for Java FIPS 2.1.0-2.1.1 & LTS 2.73.0-2.73.7 - Resource Consumption in Native Crypto Engines

CVE-2025-60419 MEDIUM

NDIS Usermode IO <6.0.5600.16348 - DoS

CVE-2025-62706 MEDIUM

Authlib < 1.6.5 - Denial of Service via Unbounded DEFLATE Decompression in JWE zip=DEF

CVE-2025-62478 MEDIUM

Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service in Object Store

CVE-2025-62477 MEDIUM

Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service in Remote Replication

CVE-2025-62476 MEDIUM

Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service in Remote Replication

CVE-2025-62475 MEDIUM

Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service via HTTP

CVE-2025-53068 MEDIUM

Oracle Solaris 11 - Denial of Service via Kernel Resource Consumption

CVE-2025-53067 MEDIUM

MySQL Server 9.0.0-9.4.0 - Authenticated Denial of Service in Server Optimizer

CVE-2025-53062 MEDIUM

MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - Denial of Service in InnoDB

CVE-2025-53054 MEDIUM

MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - Uncontrolled Resource Consumption in InnoDB

CVE-2025-53053 MEDIUM

MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - DoS and Data Manipulation via DML

CVE-2025-53050 HIGH

Oracle PeopleSoft Enterprise PeopleTools 8.60-8.62 - Unauthenticated Denial of Service in Performance Monitor

Previous Page 20 of 125 Next

Details

Vulnerabilities 3,102

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy