Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,128 vulnerabilities with CWE-400

CVE-2025-29907 HIGH

jsPDF < 3.0.1 - Denial of Service via addImage Method

CVE-2025-25293 HIGH

ruby-saml < 1.12.4 - Denial of Service via Compressed SAML Response Bypass

CVE-2025-0114 HIGH

Palo Alto Networks PAN-OS >= 10.1.0 < 10.1.14 - Unauthenticated Denial of Service via GlobalProtect Packet Flood

CVE-2025-27669 HIGH

Vasion Print < 20.0.1923 and Virtual Appliance < 22.0.843 - Remote Network Scanning and Denial of Service

CVE-2025-27421 HIGH

Abacus < 1.4.0 - Denial of Service via SSE Connection Goroutine Leak

CVE-2025-27100 MEDIUM

lakeFS < 1.50.0 - Authenticated Denial of Service via Memory Exhaustion

CVE-2025-27097 HIGH

GraphQL Mesh - Use-After-Free in DocumentNode Cache

CVE-2025-0426 MEDIUM

Kubernetes 1.32.0-1.32.1, 1.31.0-1.31.5, 1.30.0-1.30.9 - DoS via Container Checkpoint Requests

CVE-2025-25205 HIGH

Audiobookshelf <2.19.1 - Auth Bypass

CVE-2025-21352 MEDIUM

Windows 10 1507-24H2 and Windows Server 2008 - Denial of Service in Internet Connection Sharing

CVE-2025-21351 HIGH

Windows Active Directory Domain Services API - Denial of Service

CVE-2025-21181 HIGH

Microsoft Windows 10 1507-24H2 and Windows Server 2008 - Denial of Service in Message Queuing

CVE-2025-25193 MEDIUM

Netty <= 4.1.118.Final - Denial of Service via Environment File Read

CVE-2025-25186 MEDIUM

Net::IMAP 0.3.2-0.3.7, 0.4.0-0.4.18, 0.5.0-0.5.5 - Denial of Service via Memory Exhaustion in Response Parser

CVE-2025-21087 HIGH

F5 BIG-IP 15.1.0-15.1.9 - Uncontrolled Resource Consumption via SSL Profile or DNSSEC Operations

CVE-2025-20058 HIGH

F5 BIG-IP 15.1.0-15.1.10 - Uncontrolled Resource Consumption via Message Routing Profile

CVE-2025-24151 MEDIUM

macOS < 13.7.3, < 14.7.3, < 15.3 - Denial of Service via Memory Corruption

CVE-2025-24126 HIGH

iPadOS < 18.3 - Uncontrolled Resource Consumption

CVE-2025-0704 MEDIUM

JoeyBling bootplus <247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d - DoS

CVE-2025-21549 HIGH

Oracle WebLogic Server 14.1.1.0.0 - Unauthenticated Denial of Service via HTTP/2

CVE-2025-21548 MEDIUM

Oracle MySQL Connector/Python < 9.1.0 - Denial of Service via Uncontrolled Resource Consumption

CVE-2025-21547 CRITICAL

Oracle Hospitality OPERA 5 5.6.19.20, 5.6.25.8, 5.6.26.6, 5.6.27.1 - Unauthenticated Denial of Service via Opera Servlet

CVE-2025-21545 HIGH

Oracle PeopleSoft Enterprise PeopleTools 8.60 and 8.61 - Unauthenticated Denial of Service via OpenSearch

CVE-2025-21529 MEDIUM

MySQL Server < 8.0.40, 8.4.3, 9.1.0 - Authenticated Denial of Service in Information Schema

CVE-2025-23184 MEDIUM

Apache CXF < 3.5.10, 3.6.5, 4.0.6 - Denial of Service via Unclosed CachedOutputStream

Previous Page 33 of 126 Next

Details

Vulnerabilities 3,128

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy