Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,128 vulnerabilities with CWE-400

CVE-2024-21207 MEDIUM

MySQL Server 8.0.0-8.0.38, 8.4.0-8.4.1, 9.0.0-9.0.1 - Denial of Service in InnoDB

CVE-2024-21204 MEDIUM

MySQL Server 8.4.0 and 9.0.1 and prior - Denial of Service via Uncontrolled Resource Consumption

CVE-2024-21203 MEDIUM

MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Authenticated Denial of Service in FTS

CVE-2024-21196 MEDIUM

MySQL Server < 8.0.39, 8.4.2, 9.0.1 - Denial of Service in X Plugin

CVE-2024-21194 MEDIUM

MySQL Server <= 8.0.39, <= 8.4.2, <= 9.0.1 - Authenticated Denial of Service in InnoDB

CVE-2024-45736 MEDIUM

Splunk Enterprise < 9.3.1, < 9.2.3, < 9.1.6 and Splunk Cloud Platform < 9.2.2403.107 - DoS via INGEST_EVAL

CVE-2024-8184 MEDIUM

Eclipse Jetty 9.3.12-9.4.55 and 12.0.0-12.0.8 - Unauthenticated Denial of Service via ThreadLimitHandler

CVE-2024-6762 LOW

Eclipse Jetty 10.0.0-10.0.17 - Unauthenticated Denial of Service via PushSessionCacheFilter

CVE-2024-9823 MEDIUM

Eclipse Jetty 9.0.0-9.4.53 and 12.0.0-12.0.2 - Unauthenticated Denial of Service via DosFilter Memory Exhaustion

CVE-2024-47497 HIGH

Juniper Networks Junos OS - DoS

CVE-2024-7294 HIGH

Telerik Report Server < 10.2.24.806 - Unauthenticated Denial of Service via HTTP Request Flooding

CVE-2024-43575 HIGH

Windows Server 2016/2019/2022 < 10.0.14393.7428/10.0.17763.6414/10.0.20348.2762/10.0.25398.1189 - Hyper-V DoS

CVE-2024-43545 HIGH

Windows Server 2008-2022 <10.0.25398.1189 - DoS in OCSP Server

CVE-2024-43544 HIGH

Windows Server 2008-2022 DoS via Simple Certificate Enrollment Protocol

CVE-2024-43541 HIGH

Windows Server 2008/2012/2016/2019/2022 DoS via Simple Certificate Enrollment Protocol

CVE-2024-43515 HIGH

Windows 10 1507-22H2, Windows 11 21H2-24H2, Windows Server 2008 - Denial of Service via iSCSI

CVE-2024-43506 HIGH

Windows 10 1507-22H2, Windows 11 21H2-24H2, Windows Server 2008/2012 - Denial of Service via BranchCache

CVE-2024-38149 HIGH

Windows BranchCache - Denial of Service via Uncontrolled Resource Consumption

CVE-2024-8626 HIGH

Rockwell Automation CompactLogix 5380 Firmware 33.011-33.014 - Denial of Service via Memory Leak

CVE-2024-43789 HIGH

Discourse < 3.3.1 and < 3.4.0 - Denial of Service via Excessive Post Replies

CVE-2024-47850 HIGH

CUPS cups-browsed < 2.5b1 - Unauthenticated DDoS Amplification via IPP UDP Packet

CVE-2024-47554 MEDIUM

Apache Commons IO 2.0-2.13.0 - Uncontrolled Resource Consumption via XmlStreamReader

CVE-2024-20502 MEDIUM

Cisco Meraki MX and Z Series - Unauthenticated Denial of Service via Crafted HTTPS Requests

CVE-2024-20500 MEDIUM

Cisco Meraki MX and Z Series Firmware 16.2-18.211.2 - Unauthenticated Denial of Service via TLS/SSL Session Flood

CVE-2024-9358 MEDIUM

ThingsBoard < 3.7 - Resource Consumption via HTTP RPC API

Previous Page 39 of 126 Next

Details

Vulnerabilities 3,128

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy