Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,102 vulnerabilities with CWE-400

CVE-2025-55972 HIGH

TCL 65C655 Firmware - Unauthenticated Denial of Service via UPnP SetAVTransportURI Flood

CVE-2025-61600 HIGH

Stalwart <0.13.3 - Memory Corruption

CVE-2025-61595 HIGH

MANTRA-Chain mantrachain < 4.0.2 - Uncontrolled Resource Consumption via Send Hook Gas Limit Bypass

CVE-2025-20370 MEDIUM

Splunk <10.0.1, 9.4.4, 9.3.6, 9.2.8 - DoS

CVE-2025-56572 HIGH

finance.js 4.1.0 - Denial of Service via seekZero() Parameter

CVE-2025-11149 HIGH

node-static - Denial of Service via Null Byte Handling

CVE-2025-56234 HIGH

AT_NA2000 - Denial of Service via TCP RST Packet Sequence Number Spoofing

CVE-2025-56233 HIGH

Openindiana kernel SunOS 5.11 - DoS

CVE-2025-57446 HIGH

O-RAN Near Realtime RIC ric-plt-submgr - DoS

CVE-2025-55560 HIGH

PyTorch < 2.7.0 - Denial of Service via Inductor Compilation of Sparse/Dense Tensor Operations

CVE-2025-55559 HIGH

TensorFlow 2.18.0 - Denial of Service via Conv2D Layer Padding

CVE-2025-55558 HIGH

PyTorch < 2.7.0 - Denial of Service via Buffer Overflow in Inductor-Compiled Models

CVE-2025-59830 HIGH

Rack < 2.2.18 - Denial of Service via Query Parameter Separator Bypass

CVE-2025-55551 HIGH

PyTorch < 2.8.0 - Denial of Service via torch.linalg.lu Slice Operation

CVE-2025-57317 HIGH

apidoc-core < 0.15.0 - Prototype Pollution via PreProcess Function

CVE-2025-48392 HIGH

Apache IoTDB <2.0.4 - Info Disclosure

CVE-2025-6921 HIGH

huggingface/transformers < 4.53.0 - Regular Expression Denial of Service in AdamWeightDecay Optimizer

CVE-2025-57440 HIGH

Blackmagic ATEM Mini Pro - Unauthenticated RCE

CVE-2025-4444 LOW

Tor < 0.4.7.16 and 0.4.8.0-0.4.8.17 - Uncontrolled Resource Consumption in Onion Service Descriptor Handler

CVE-2025-58767 MEDIUM

REXML 3.3.3-3.4.1 - Denial of Service via Multiple XML Declarations

CVE-2025-35432 MEDIUM

CISA Thorium - Unauthenticated Denial of Service via Unlimited Verification Email Requests

CVE-2025-56264 HIGH

zhyd oneblog 2.3.9 - Denial of Service via /api/comment Endpoint

CVE-2025-43295 MEDIUM

iPadOS < 18.7 - Denial of Service

CVE-2025-43796 HIGH

Liferay Portal 7.4.0-7.4.3.101 and DXP 2023.Q3.0-2023.Q3.4 - Uncontrolled Resource Consumption via GraphQL Queries

CVE-2025-59139 MEDIUM

Hono < 4.9.7 - Denial of Service via Body Size Limit Bypass

Previous Page 22 of 125 Next

Details

Vulnerabilities 3,102

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy